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Abstract 



LIFE is an experimental programming language proposing to integrate logic programming, 
functional programming, and object-oriented programming. It replaces first-order terms 
with ^-terms, data structures which allow computing with partial information. These are 
approximation structures denoting sets of values. LIFE further enriches the expressiveness of 
■^-terms with functional dependency constraints. We must explain the meaning and use of 
functions in LIFE declaratively as solving partial information constraints. These constraints 
do not attempt to generate their solutions but behave as demons filtering out anything else. 
In this manner, LIFE functions act as declarative coroutines. We need to show that the i\>- 
term's approximation semantics is congruent with an operational semantics viewing functional 
reduction as an effective enforcing of passive constraints. 

In this article, we develop a general formal framework for entailment and disentailment of 
constraints based on a technique called relative simplification, we study its operational and 
semantical properties, and we use it to account for functional application over ^-terms in 
LIFE. 



Resume 

LIFE est un langage de programmation experimental proposant d'integrer la programmation 
logique, la programmation fonctionnelle et la programmation orientee-objet. II remplace les 
termes du premier ordre par des ^-termes, des structures de donnees qui permettent le calcul 
avec information partielle. Ceux-ci sont des structures d' approximation qui denotent des 
ensembles de valeurs. LIFE enrichit encore l'expressivite des ^-termes avec des contraintes 
de dependance fonctionnelle. Nous devons expliquer declarativement la signification et 
l'utilisation des fonctions en LIFE comme une resolution de contraintes avec information 
partielle. Une telle contrainte ne tente pas d'enumerer ses solutions mais se comporte comme 
un demon excluant toute valuation qui n'en soit pas. De cette maniere, les fonctions de 
LIFE jouent le role de coroutines declaratives. II nous faut montrer que la semantique 
d' approximation du ^-terme est congrue avec une semantique operationnelle concevant la 
reduction des fonctions comme une application effective de contraintes passives. 

Dans cet article, nous presentons un schema general pour tester la consequence et la refutation 
de contraintes base sur une technique appelee simplification relative, en etudions les proprietes 
operationnelles et semantiques, et l'utilisons pour expliquer l'application fonctionnelle sur les 
■^-termes dans LIFE. 
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The paradox of culture is that language [...] is too linear, 
not comprehensive enough, too slow, too limited, too 
constrained, too unnatural, too much a product of its own 
evolution, and too artificial. This means that [man] must 
constantly keep in mind the limitations language places 
upon him. 

Edward T. Hall, Beyond Culture. 



1 Introduction 
1.1 The task 

LIFE extends the computational paradigm of Logic Programming in two essential ways: 

• using a data structure richer than that provided by first-order constructor terms; and, 

• allowing interpretable functional expressions as bona fide terms. 

The first extension is based on ^-terms which are attributed partially-ordered sorts denoting 
sets of objects [1,3]. In particular, ^-terms generalize first-order constructor terms in their 
role as data structures in that they are endowed with a unification operation denoting type 
intersection. This gives an elegant means to incorporate a calculus of multiple inheritance 
into symbolic programming. Importantly, the denotation-as-value of constructor terms is 
replaced by the denotation-as-approximation of ^-terms. As a result, the notion of fully 
defined element, or ground term, is no longer available. Hence, such familiar tools as variable 
substitutions, instantiation, unification, etc., must be reformulated in the new setting [5]. 

The second extension deals with building into the unification operation a means to reduce 
functional expressions using definitions of interpretable symbols over data patterns. 1 Our 
basic idea is that unification is no longer seen as an atomic operation by the resolution rule. 
Indeed, since unification amounts to normalizing a conjunction of equations, and since this 
normalization process commutes with resolution, these equations may be left in a normal form 
that is not a fully solved form. In particular, if an equation involves a functional expression 
whose arguments are not sufficiently instantiated to match a definiens of the function in 
question, it is simply left untouched. Resolution may proceed until the arguments are proven 
to match a definition from the accumulated constraints in the context [4]. This simple idea 
turns out invaluable in practice. Here are a few benefits. 

• Such non-declarative heresies as the is predicate in Prolog and the freeze meta-predicate 
in some of its extensions [21, 12] are not needed. 

• Functional computations are determinate and do not incur the overhead of the search 
strategy needed by logic programming. 



'Several patterns specifying a same function may possibly have overlapping denotations. Therefore, the order 
of the specified patterns defines an implicit priority, as is usual in functional programming using first-order patterns 
(e.g., [16]). 
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• Higher-order functions are easy to return or pass as arguments since functional variables 
can be bound to partially applied functions. 

• Functions can be called before the arguments are known, freeing the programmer from 
having to know what the data dependencies are. 

• It provides a powerful search-space pruning facility by changing "generate-and-test" 
search into demon-controlled "test-and-generate" search. 

• Communication with the external world is made simple and clean [9]. 

• More generally, it allows concurrent computation. Synchronization is obtained by 
checking entailment [20, 23]. 

There are two orthogonal dimensions to elucidate regarding the use of functions in LIFE: 

• characterizing functions as approximation-driven coroutines; and, 

• constructing a higher-order model of LIFE approximation structures. 

This present article is concerned only with the first item, and therefore considers the case of 
first-order rules defining partial functions over ^-terms. 

1 .2 The method 

The most direct way to explain the issue is with an example. In LIFE, one can define functions 
as usual; say: 

fact(Q) -» 1. 

fact(N : int) -> N *fact(N - 1). 

More interesting is the possibility to compute with partial information. For example: 

minus(negint) — > posint. 
minus(posint) — > negint. 
minus(zero) — > zero. 

Let us assume that the symbols int, posint, negint, and zero have been defined as sorts with 
the approximation ordering such that posint, zero, negint we. pairwise incompatible subsorts 
of the sort int (i.e., posint A zero = ±, negint A zero = ±, posint A negint = _L). This is 
declared in LIFE as int := {posint; zero; negint}. Furthermore, we assume the sort definition 
posint := {posodd; poseven}; i.e., posodd and poseven are subsorts of posint and mutually 
incompatible. 

The LIFE query Y = minus(X : poseven)? will return Y = negint. The sort poseven of the 
actual parameter is incompatible with the sort negint of the formal parameter of the first rule 
defining the function minus. Therefore, that rule is skipped. The sort poseven is more specific 
than the sort posint of the formal parameter of the second rule. Hence, that rule is applicable 
and yields the result Y = negint. 
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The LIFE query Y = minus(X : string) will fail. Indeed, the sort string is incompatible with 
the sort of the formal parameter of every rule defining minus. 

Thus, in order to determine which of the rules, if any, defining the function in a given functional 
expression will be applied, two tests are necessary: 

• verify whether the actual parameter is more specific than or equal to the formal parameter; 

• verify whether the actual parameter is at all compatible with the formal parameter. 

What happens if both of these tests fail? For example, consider the query consisting of the 
conjunction: 

Y = minus(X : int),X = minus(zero)l 

Like Prolog, LIFE follows a left-to-right resolution strategy and examines the equation 

Y = minus(X : int) first. However, both foregoing tests fail and deciding which rule to use 
among those defining minus is inconclusive. Indeed, the sort int of the actual parameter in 
that call is neither more specific than, nor incompatible with, the sort negint of the first rule's 
formal parameter. Therefore, the function call will residuate on the variable X. This means 
that the functional evaluation is suspended pending more information on X. The second goal 
in the query is treated next. There, it is found that the actual parameter is incompatible with 
the first two rules and is the same as the last rule's. This allows reduction and binds X to zero. 
At this point, X has been instantiated and therefore the residual equation pending on X can be 
reexamined. Again, as before, a redex is found for the last rule and yields Y = zero. 

The two tests above can in fact be worded in a more general setting. Viewing data structures 
as constraints, "more specific" is simply a particular case of constraint entailment. We 
will say that a constraint disentails another whenever their conjunction is unsatisfiable; or, 
equivalently, whenever it entails its negation. In particular, first-order matching is deciding 
entailment between constraints consisting of equations over first-order terms. Similarly, 
deciding unifiability of first-order terms amounts to deciding "compatibility" in the sense used 
informally above. 

The suspension/resumption mechanism illustrated in our example is repeated each time a 
residuated actual parameter becomes more instantiated from the context; i.e., through solving 
other parts of the query. Therefore, it is most beneficial for a practical algorithm testing 
entailment and disentailment to be incremental. This means that, upon resumption, the test for 
the instantiated actual parameter builds upon partial results obtained by the previous test. One 
outcome of the results presented in this paper is that it is possible to build such a test; namely, an 
algorithm deciding simultaneously two problems in an incremental manner — entailment and 
disentailment. The technique that we have devised to do that is called relative simplification 
of constraints. 

This technique is relevant in the general framework of concurrent constraint logic programming, 
represented by, e.g., the guarded Horn-clause scheme of Maher [20], Concurrent Constraint 
Programming (CCP) [23], and Kernel Andorra Prolog (KAP) [15]. These schemes are 
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parameterized with respect to an abstract class of constraint systems. An incremental 
test for entailment and disentailment between constraints is needed for advanced control 
mechanisms such as delaying, coroutining, synchronization, committed choice, and deep 
constraint propagation. LIFE is formally an instance of this scheme, namely a CLP language 
using a constraint system based on order-sorted feature (OSF) structures [6]. It employs 
a related, but limited, suspension strategy to enforce deterministic functional application. 
Roughly, these systems are concurrent thanks to a new effective discipline for procedure 
parameter-passing that we could describe as "call-by-constraint-entailment" (as opposed to 
Prolog's call-by-unification). 

1 .3 Organization of paper 

We have organized the rest of this paper as follows. In Section 2, we cover informally the 
essence of LIFE that is relevant to functions and explain the gist of our approach. Reading 
only that section will provide a detailed intuition of the formal contents of the paper. It may be 
skipped altogether by the formally-minded reader who can travel through the technical details 
to follow without a road map. On the other hand, time spent there might reward the patient 
reader with a better sense of direction and hence a faster pace through later technicalities. 

The remainder of the paper is technical. In Section 3, we recall the necessary formalism 
introduced in [6, 5] accounting for LIFE'S structures and operations. It is meant to make 
this document self-contained. The reader already familiar with those notions could skip that 
section, although reading it will provide a timely summary. 

The last four sections contain the formal details and rigorous justifications of the material 
presented informally in Section 2 and its relation to the semantics of ^-terms and LIFE'S 
operational semantics. First, in Section 4, we introduce the concept of relative simplification as 
a general proof-theoretic method for proving guards in concurrent constraint logic languages 
using guarded rules. Then, in Section 5, we explain residuation using relative simplification. 
Section 6 ties the operational semantics of function reduction with the semantics of ^ -terms as 
approximation structures. Finally, we conclude with Section 7, giving a brief recapitulation of 
the contribution of this paper and a few perspectives. 

2 Synopsis 

This section is an informal, albeit precise and detailed, overview of the main ideas. Using 
schematic examples, we explain the operational mechanism underlying functional reduction 
over order-sorted feature terms in the context of a logic programming framework. We recall 
the basic terminology and notation of LIFE, unification and matching, and we sketch the 
essence of relative simplification. Formal material rewording everything in rigorous terms 
will be exposed in the following sections. 
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2.1 LIFE data structures 

The data objects of LIFE are ^A-terms. They are structures built out of sorts and features. 
■^-Terms are partially ordered as data descriptions to reflect more specific information content. 
A ^-term is said to match another one if it is a more specific description. For first-order terms, 
a matching substitution is a variable binding which makes the more general term equal to the 
more specific one. This notion is not appropriate here. Unification is introduced as taking the 
greatest lower bound (GLB) with respect to this ordering. 

Sorts and features 

Sorts are symbols. They are meant to denote sets of values. Here are a few examples: person, 
int, true, 3.5, _L, T. Note that a value is assimilated to a singleton sort. We call S the set of all 
sorts. They come with a partial ordering <, meant to reflect set inclusion. 2 For example, 

• _L < john < man < person < T ; 

• _L < true < boot < T; 

• _L < 2 < poseven < int < T. 

The sorts T (top) and _L (bottom) are respectively the greatest and the least sort in S and 
denote respectively the whole domain of interpretation and the empty set. 

Sorts also come with a GLB operation A. For example, 

• person A male = man; 

• male A female = hermaphrodite; 

• man A woman = _L; 

etc. , which can be visualized as shown in Figure 1 . We will refer back to this figure in several 
examples to come. 

Features (or attribute labels) are also symbols and used to build ^-terms by attaching attributes 
to sorts. The set of feature symbols is called T . We will use words and natural numbers as 
features. The latter are handy to specify attributes by positions as subterms in first-order terms. 
Examples of feature symbols are age, spouse, 1, 2. 

if> -Terms 

Basic ip -terms are the simplest form of ip -terms. They are: 

• variables; e.g., X,Y,Z, ... 

• sorts; e.g., person, int, true, 3.5, T , ... 

• tagged sorts; e.g., X : T, Y : person, . . . 

Stand-alone variables are always implicitly sorted by T, and stand-alone sorts are always 
implicitly tagged by some variable occurring nowhere else. Thus, one might say that a basic 

2 Sorts and their relative ordering are specified by the user. 
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male 




person 




female 












man 




hermaphrodite 




woman 




Figure 1 . A partial order of sorts 

■^-term is always of the form variable : sort. 

Features are used to build up more complex ^-terms. Thus, the following ^-term is obtained 
from the ^-term person by attaching the feature age typed by the ^-term int. 3 

X : person(age =>- / : int). 

The sort at the root of a ^>-term, here person, is called its principal sort. A ^A-term can be seen 
as a record structure. Features correspond to field identifiers, and fields are, in turn, associated 
to ^-terms. These are flexible records in the sense that variably many fields may be attached 
to the principal sort. For example, we can augment the ^-term above with another feature: 

X : person(age =>■ / : int, 

spouse =>■ Y : person(age =>■ J : int)). 

This ^-term denotes the set of all objects X of sort person (in the intended domain), whose 
value / under the function age is of sort int, whose value Y under the function spouse is of sort 
person, and the value J of Y under the function age is of sort int. 

The following ^-term is more specific, in the sense that the above set becomes smaller if one 
further requires that the values / and / coincide; namely, age{X) = age{spouse{X)): 



X : person(age =>■ / : int, 

spouse =^ Y : person(age =^ /)). 

3 To illustrate the ^-term ordering, we will give a decreasing matching sequence of ^-terms going from more 
general to more specific ones. 
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It denotes the subset of individuals in the previous set of person's whose age is the same as 
their spouse's. This ^-term uses a coreference thanks to sharing the variable /. The next 
■^-term is even more specific, since it contains an additional (circular) coreference; namely, 
X = spouse(spouse(X)): 

X : person(age =>- / : int, 

spouse =>• Y : person(age =>- /, 

spouse X)). 

It denotes the set of all individuals in the previous set whose spouse's spouse is the individual 
in question. Note that only variables that are used as coreference tags need to be put explicitly; 
i.e., those that occur at least twice. 

To be well-formed, the syntax of a ^-term requires three conditions to be satisfied: (1) the 
sort _L may not occur; (2) at most one occurrence of each variable has a sort; (3) all the 
features attached to a sort are pairwise different. These conditions are necessary to ensure 
that a ^-term expresses coherent information. For example, X : man(friend =>■ X : woman), 
violating Condition (2), is not a ^-term, butX : man(friend =>• X) is. 

As for ordering, a ^-term is made more specific through: 

• sort refinement; e.g., X : int < U : T; 

• adding features typed by ip -terms; e.g., X : T(age =>- int) < U : T; 

• adding coreference; e.g., X : T (likes =>- X) < U : T (likes =>- V). 

Note that, as record structures, ^-terms are both record types and record instances. In addition, 
they allow mixing type and value information. Finally, they also permit constraining records 
with equations on their parts. 

if> -Terms as graphs 

There is a straightforward representation of a ^-term as a rooted directed graph. Let us assume 
that every variable is explicitly sorted (if necessary, by the sort T) and every sort is explicitly 
tagged (if necessary, by a single-occurrence variable). The nodes of the graph are the variables, 
their labels are the corresponding sorts; for every feature mapping one variable X to another 
one Y there is an arc (X, Y) labeled by that feature. One node is marked as the root (whose 
label is called the root sort or the principal sort of the ^-term). 

For example, the ^-term: 

X\ : person(name =>■ Xi : id(first =>■ X3 : string, 

last =>■ X4 : string), 
spouse =>■ Xs : person(name =>■ X^ : id(last =>■ X4), 
spouse =4> Xi)). 

corresponds to the OSF-graph shown in Figure 2. 
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X\ : person 



X 2 : id 



spouse 




X3 : string 



X4 : string 



spouse 



Xs : person 




X(, : id 



Figure 2. An OSF-Graph 



i/; -Terms as values 

One particular interpretation is readily available for ^-terms. Namely, the syntactic interpre- 
tation whose domain is the set of all ^-terms. Note that ^-terms have a dual personality. 
They are syntactic objects (graphs) representing the values of the domain of , and they also 
are types which denote sets. In the particular case of the interpretation , they denote subsets of 
the domain of ; i.e., sets of ^-terms. We shall see this dual view does not lead to paradox, au 
contraire. 

In the interpretation , a sort s £ S denotes the set of all ^A-terms whose root sort is a subsort of 
s. A feature l<£ T denotes the function mapping a ^-term to its sub-^-term under that feature, 
or to T, if there is none. 

Thus, a sort denotes the set of all ^-term values which, as ^-term types, are more specific 
than the basic ^-term s. In fact, it is possible to show that in general a ^-term denotes the set 
of all ^-terms which are more specific than the ^-term itself. This is the "^-terms as filters" 
principle established in [5]. It yields directly the fact that the partial ordering < on ^-terms is 
exactly set-inclusion of the sets denoted by the ^-terms in the ^-term domain. 

Feature trees as values 

We obtain two other examples of OSF-algebras when we "compress" the ^-term domain by 
identifying values. In a first step, we say that two ^-terms which are equal up to variable 
renaming represent the same value of the domain, or: two isomorphic graphs are identified. 
We call the OSF- algebra hereby obtained q. 



It is well known that a rooted directed graph represents a unique rational tree obtained by 
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unfolding. Hence, unfolding an OSF-graph yields what we call a feature tree. Such a tree is 
one whose nodes are labeled with sorts and whose edges are labeled with features. Therefore, 
we can also identify ^-terms which represent the same rational tree. The domain hereby 
obtained is essentially the feature tree structure T introduced first in [7] and [8]. 

Unification of i> -terms 

We say that ipi is unifiable with ip2 if ipi A ip2 ^ -U i-e-, if there exist ^-terms with non-empty 
denotations which are more specific than both tp\ and if>2- Then, one can show that there 
exists a unique (up to variable renaming) ^-term if> which is the most general of all these, the 
'greatest lower bound' (GLB) of i\>\ and tpi, written if> = tp\ A if>2- 

For the set denotation of ^-terms, A is exactly set intersection. An important result illustrating 
the significance of the ^-term interpretation is that ip\ is unifiable with tp2 if and only if the 
intersection of the two sets denoted by tp\ and i\>2 in the ^-term domain is non-empty. 

Constraints and i> -terms 

We also view a ^-term logically as a constraint formula by flattening it into what we call its 
dissolved form. For ease of notation, we shall write [X : tp) to indicate that the root variable 
of the ^-term tp is X. 

More precisely, the ^A-term X : s{l\ [X\ : tpi),...,l n =>■ {X n : V'n)) corresponds to the 
conjunction of the constraint X : s & X.l\ = X\ & X.l n = X„ and of the constraints 
corresponding to , . . . , ip n . A basic ^-term X : s corresponds to the sort constraint X : s. For 
example, the ^-term: 

ip = X : person(likes =^ X, 

age Y : int) 

is identified with the constraint: 

ip = X : person & X.age = Y & Y : int & X.likes = X. 

Thus, the constraint ip is a conjunction of atomic sort constraints of the form X : s and atomic 
feature constraints of the form X.l = Y. The interpretation of the sort and feature constraints 
over the intended domain is straightforward, given that sorts are interpreted as subsets of the 
domain and features as unary functions over the domain. 

A value lies in the set denoted by the ^-term i\> in an interpretation X if and only if the 
constraint X = Z & ip is satisfiable in the interpretation 1, with that value assigned to the 
variable X, and Z being the root variable of tp. All variables of i\> are implicitly existentially 
quantified. This reflects our view of ^-terms as set-denoting types. 
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Rules for unification 

Unifying (X\ : ipi) and (X2 : ipi) amounts to deciding satisfiability of the conjunction 
ipi & ip2 & Xi = X2. Thus, the unification algorithm can be specified in terms of constraint 
normalization rules. A constraint containing the conjunction over the line is rewritten into an 
equivalent constraint by replacing this conjunction by the constraint under the line. We only 
need four rules that are illustrated schematically on an example below. (Refer to the sorts of 
Figure 1.) 

Equality: 

. . . X : person & U : male & U = X ... 
... X: person & X : male & U = X ... 

Sorts: 

. . . X : person & X : male . . . 
... X : man . . . 

Features: 

. . . X.likes = Y & X.likes =V ... 
. . . X.likes =Y & V=Y ... 

Clash: 

... X: ± ... 

I 

One can show that a constraint is satisfiable if and only if it is normalized to a constraint 
different from the false constraint _L. If we identify every constraint containing a sort constraint 
of the form X : _L with the false constraint, we omit the clash rule. 

In particular, the ^-terms (X\ : ^i)and(X2 : ^2) are unifiable if and only if tpi &ip2 &X\ = X2 
is normalized into a constraint tp different from _L. This constraint tp corresponds, apart from 
its equalities (between variables), to the ^-term (unique up to variable renaming) tp\ A ^2- 

2.2 Relative simplification 

We use the framework of first-order logic to transform the combined entailment/disentailment 
problem into one that can be solved by the relative simplification algorithm. 

Matching and entailment 

In the remainder of this paper, when considering the matching problem tpi < tp2, we will refer 
to ipi as the actual parameter and its variables (named X, Y,Z,.. .) as global, and to ip2 as the 
formal parameter and its variables (named U, V, W, . . .) as local. 
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In the Concurrent Constraint Logic Programming framework, the matching problem generalizes 
to the entailment problem; namely, whether the actual constraint, also called context, entails 
the formal constraint, also called guard [20, 23] . 

First observe that, for example, the first-order term t\ = f(Z,f(Y,Y)) matches the term 
h =f{W, V), and that the implication: 

VXVYVZ (X=f{ZJ{Y,Y)) -» 3U3V3W{X = U&U=f{W, V))) 

is valid. Generally, the term t\ matches tj_ (noted t\ < ti) if and only the implication 
X = t\ -> 3U3V (X = U & U = t 2 ) is valid, where V stands for all variables of t 2 . More 
shortly, X = t\ entails X = U & U = t 2 . 

Note, however, that there is an essential difference between ^-term matching and first-order 
term matching. For example, the term/(a, a) matches the term/( V, V). This is true because 
first order terms denote individuals. This is no longer true in LIFE. For example, the ^-term 
X : /(l Y : int, 2 Z : int) does not match the V'-term \] : f(\ y, 2 V). Indeed, the 
presence of two occurrences of the same sort does not entail that the individuals in that sort be 
equal. Therefore, X : s(l if>\,2 tpi) is less specific than the ^-term U : s(l =^ V, 2 =^ V) 
only if the root variables of ip\ and ip2 are identical (or bound together). 

This does not mean that values and operations on them are not available in LIFE. 4 What the 
above point illustrates is that to recognize that a sort is a fully determined value, and hence to 
enforce identity of all its distinct occurrences, one needs this information declared explicitly, 
in effect adding an axiom to the formalization of such sorts. So-declared extensional sorts can 
then be treated accordingly thanks to an additional inference rule (being a minimal non-bottom 
sort is not sufficient). Without this rule, however, equality of distinct occurrences cannot be 
entailed and the behavior illustrated is the only correct one. The point of this paper being 
independent if this issue, we shall omit this additional rule. 

The fact that [X : ^i) < (U : tpi), i.e., the ^-term (X : matches the ^-term (U : fa), 
translates into the fact that the corresponding constraint tp\ entails the constraint tpi & U = X. 
This means that the implication tp\ — > 3U, V, W. . . tpi & U = X is valid. Here, 3U,V,W . . . 
indicates that all local variables are existentially quantified. The global variables are universally 
quantified. 

Entailment of general constraints 

We will now give a precise explanation of a fact which is well-known for constructor terms. 
An actual parameter t\ matches a formal parameter t 2 if and only if the unification of the two 
terms binds only variables of t 2 , but no variable of t\. In other words, only local, but no global, 
variables are instantiated. 

4 Of course, one can use actual values of sort int, real, or string in expressions with their usual operations as 
in most programming languages. In fact, LIFE provides the additional freedom to write such expressions mixing 
actual values or their sort approximations int, real, or string. Such expressions are either solved by local propagation 
or residuate pending further refinements of the non-value sorts into values. 
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The unification of the term t\ = f(Z,f(Y, Y)) and the term tj_ = f(W, V) yields the variable 
bindings W = Z and V = f(Y, Y). On the other hand, the conjunction: 

X =f{Z,f{Y, Y))&U = X&U =f{W, V) 

is equivalent to: 

X=f{Z,f{Y,Y))&{U = X&V=f{Y,Y)&W = Z), 

and the last part of this conjunction is valid if the local variables U, V, W are existentially 
quantified. 

This is the general principle which underlies the relative simplification algorithm. Namely, the 
actual constraint tpi entails tp2 & U = X if and only if the following holds. Their conjunction 
ipi & ip2 & U = X is equivalent to the conjunction ipi & ip' 2 °f ^ e actual constraint ipi and a 
constraint ip' 2 which is valid if existentially quantified over the local variables. In our case, ip' 2 
will be a conjunction of equalities binding local to global variables. Formally, 

|= Vi -> 317, V, W, . . . i/; 2 &U = X 

if and only if there exists a formula tp' 2 such that: 

|= & 1P2 & U = X) <-» (V'i & ip' 2 ) and |= 3U,V,W... ip' 2 . 

This statement is correct since validity of the implication ipi — > 3 U ipi & U = X is the same as 
the validity of the equivalence (ipi & (3f7 ^2 & £7 = X)) <-> ^i. This fact is analogous to the 
fact that a set is the subset of another one if and only if it is equal to the intersection of the two. 
The condition |= 3U,V,W... i/j' 2 in the statement expresses that i$>\ & (3U, V, W, . . . i/j' 2 ) is 
equivalent to 

Towards relative simplification 

Operationally, in order to show that (X : ipi) < (U : ipi) holds, it is sufficient to show that 
the conjunction ipi & ip2 & U = X is equivalent to ipi & ip' 2 , where tp' 2 is some constraint 
which, existentially quantified over the variables of ip2, is valid. In our case, again, ip' 2 will be 
a conjunction of equalities binding variables of ip2 to variables of ip\. 

Therefore, in order to test (X : ipi) < (U : ip 2 ), we will apply successively the unification 
rules on the constraint ipi & i\>2 & U = X if they do not modify We obtain three kinds of 
transformations which are illustrated schematically below. (Refer to the sorts of Figure 1 .) 

Equality: 

... X=Y & U = X ... 
... X=Y & 17 = F ... 
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Sorts: 

. . . X : man & U = X & U : person . . . 
... X: man & U = X ... 

Features: 

. . . X.likes =Y & U = X & U. likes =V ... 
. . . X.likes =Y & U = X & V=Y ... 

The equality rule is derived from the corresponding unification rule, which has to be restricted 
to modify only the formal constraint. If the actual constraint contains an equality between two 
global variables, then one of them may be eliminated for the other. A global variable is never 
eliminated for a local one. 

The sort rule corresponds to two applications of unification rules, first the elimination of the 
local by the global variable, and then the reduction of two sort constraints on the same variable 
(here X : man & X : person) to one sort constraint (namely X : man A person). Clearly, if the 
"global sort" is a subsort of the "local sort" then this application does not modify the global 
constraint. The feature rule works quite similarly. 

For example, the rules above can be used to show that the ^-term: 

ipi = X : man(likes =>■ Y : person, age =>■ / : int) 

matches the ^-term: 

ip2 = U : person(likes =^ V). 

Namely, the constraint ipi & ip2 & U = X : 

X : man & X.likes = Y & Y : person & X.age = I & I : int 
& U : person & U. likes = V 
& U = X 

is normalized into: 

X : man & X.likes = Y & Y : person & X.age = I & I : int 
& V =Y & U = X; 

that is, 

tl>i & V=Y & U = X. 

Clearly, 3U3V (V = Y & U = X) is valid. Therefore, the constraint ipi entails the constraint 

ip 2 & U = X. 
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Relative simplification for entailment 

The rules above are such that ip\ & ip rewrites to ipi & ip'; i.e., the global constraint ipi is 
not modified by the simplification. In this case, we say that the constraint ip simplifies to ip' 
relatively to the actual constraint ip\. In other words, ip\ acts as a context relatively to which 
simplification of tp is carried out. In general, this context formula may be any formula. Hence, 
we can reformulate the rules above as relative-simplification rules. We use the notation ^ [4>] 
to mean that ip is simplified into ip' relatively to the context formula (j). Schematically, 

Equality: 

... U = X ... 

[... X=Y ...] 

... U=Y ... 
Sorts: 

... U = X& U: person ... 



Features: 

... U = X& U. likes =V ... 

[ . . . X.likes = Y ...] 

... U = X &V = Y ... 

Using these rules, the constraint ip2 = U = X & U : person & U. likes = V in the previous 
example simplifies to^2 = ^ = ^& ^= relatively to: 

ip\ = X : man & X.likes = Y & Y : person & X.age = I & I : int. 

Invariance of relative simplification is the following property. If ip simplifies to ip' relatively 
to (j), then the conjunction of ip with (j) is equivalent to the conjunction of ip' with (j). 

This invariance justifies the correctness of the relative simplification algorithm with respect to 
entailment. Namely, if tp simplifies to tp' relatively to (f>, and if ip' consists only of equations 
binding local variables, then cj> entails ip. 

Proof of completeness of the algorithm needs the assumption that the set T of features is 
infinite. Note that exactly thanks to the infiniteness of T our framework accounts for flexible 
records; i.e., the indefinite capacity of adding fields to records. 

Relative simplification for disentailment 

If the result of the matching test ipi < ip2 is negative, i.e., the actual constraint does not 
entail the formal constraint, then we must know more; namely, whether the two terms are 
non-unifiable. Non-unifiability is equivalent to the fact that the actual parameter will not 
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match the formal one even when further instantiated; e.g., when further constraints are attached 
as conjuncts. Logically, this amounts to saying that a context formula (j) disentails a guard 
constraint tp if and only if the conjunction (p & ip is unsatisfiable. In terms of relative 
simplification, (p disentails ip if and only if ip simplifies to thefalse constraint _L relatively to (p. 

For example, X : male is non-unifiable with U : woman. 5 The constraint U : woman & U = X 
simplifies to _L relatively to the constraint X : male, since woman A male = _L, using a rule of 
the form indicated below, and then the Clash rule. 

Sorts: 

... U = X & U : woman . . . 

[ . . . X : male . . . ] 

... U = X & U : woman A male . . . 

The following example shows that a sort clash cannot always be detected by comparing sorts 
in the formal constraint one by one with sorts in the actual constraint; i.e., one needs several 
steps with intermediate sort intersections. 

The ^-term Z : T (likes =>■ X : male, friend =>■ Y : female) is non-unifiable with the ^A-term 
W : T (likes U : person, friend =>- U). The constraint <j> = X : male & Y : female 
disentails the constraint ip=U = X& U= Y& U: person. Operationally, the constraint ip 
simplifies to _L relatively to the context <j>. Here are the steps needed to determine this: 



... U = X&U=Y&U: person . . . 



... u = 


x&u = 


Y& U: 


person A male . . . 


... u = 


x&u = 


Y&U 


: man A female . . . 


_L 



There is an issue regarding the enforcing of functionality of features in the simplification of a 
constraint ip relatively to a context <j>. This may be explained as follows. Let us suppose that 
two global variables X and Y become bound to the same local variable U. Then, 

• the context <j> entails the constraint ip only if <j> contains X = Y; and, 

• the context (f> disentails the constraint ip if the same path of features starting from X and 
Y, respectively, leads to variables X' and Y' , respectively, whose sorts are incompatible. 

There are essentially two cases, depending on whether a new local variable has to be introduced 
or not. Each case is illustrated in the next two examples. 

The ip -term: 6 

(j> = Z : T(likes =>■ X : T(age =>■ I\ : poseven), 
friend =^ Y : T(age =^ h : posodd)) 

5 Refer to the sorts of Figure 1 . 

5 We assume that poseven A posodd = _L. 
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is non-unifiable with the ^-term: 

tl> = W : T(likes ^ U, 
friend =>■ U) 

That is, the constraint <j> disentails the constraint ip. Operationally, with the context <j>, the 
constraint tp simplifies, in a first step, to: 

W = Z&U = X&U=Y. 

Then, using the rule: 

... U = X& U=Y ... 



... U = X&U=Y&J = h& J = I 2 ... 
where / is a new variable, to: 

W = Z&U = X&U=Y&J = h& J = I 2 



[ . . . X.age = I\ & Y.age = h 



and finally to _L, since the sorts of I\ and h (poseven and posodd) are incompatible. 

The rules enforce the following property: a global variable is never bound to more than one 
local variable. Therefore, if the variable X or the variable Y is already bound to a local variable, 
no new local variable must be introduced. This is illustrated by the second example. 

The ^-term: 

<j> = Z : T(likes =^ X : T(age =^ 1\ : poseven), 
friend =^ Y : T(age =^ h : posodd), 
age => h) 

is non-unifiable with the ^-term: 

tl> = W : T(likes ^ U, 

friend =>■ U(age =>■ /), 
age ^> J). 

Operationally, with the context <j>, the constraint ip simplifies, in a first step, to: 
W = Z& U = X& U= Y& J = h. 
Then, using the rule: 
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... U = X&U=Y&J = h ■■■ 
... U = X&U=Y&J = h&J = I 2 ... [-^ = 'i*^ = *-] 

where / is a new variable, to: 

W = Z& £/ = X& £/=y&/ = /i&/ = / 2 

and finally to _L, for the same reason as above. 

In order to be complete with respect to disentailment, the algorithm must keep track of all pairs 
of variables (X,Y),..., (X 1 , Y') whose equality is induced by the binding of X and Y to the 
same local variable. That is, it must propagate equalities along features. In our presentation, 
it will be conceptually sufficient to refer explicitly to the actual equalities binding the global 
variables to a common local variable. Practically, this can of course be done more efficiently. 

Specifying the relative simplification algorithm 

If ip & U = X simplifies to ip' relatively to <j> and no relative-simplification rule can be applied 
further, then: 

• <j> entails ip & U = X; formally, 

|= (p -» 317, V, W. . . (ip & U = X), 

if and only if ip', with the variables of ip existentially quantified, is valid; formally: 
|= 3U,V,W... ip'. 

• <p> disentails ip & U = X; formally: 

|= (p -» -,3U, V, W. . . (ip & U = X), 
if and only if ip' = _L. 

This test is incremental. Namely, every relative simplification of the constraint ip to some 
constraint ip' relatively to the context (p is also a relative simplification relatively to an 
incremented context cp & cp' , for any constraint cp' . 

Recapitulating, our original goal was a simultaneous test of matching and non-unifiability for 
two given ^-terms ip\ and ip2. This test was recast as a test of entailment and disentailment 
for the constraints to which the ^-terms dissolve. Namely, if X and U are the root variables of 
ipi and ip2, respectively, the test whether ip\ entails or disentails ip2 & U = X. 

In our setting, the entailment test succeeds if and only if ip' 2 is a conjunction of matching 
equations; i.e., of the form ip' 2 = U = X & V = Y & W = Z . . ., where the local variables U, 
V, W, . . . are all different. 
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3 Background 

We introduce briefly the notions that we have used informally in Section 2. For a thorough 
investigation of these notions, the reader is referred to [6, 5]. 

We start with the notion of OSF-algebras. They are the semantic structures interpreting 
complex data objects built out of features and partially-ordered sorts. Mathematically, an 
OSF-algebra formalizes access into the parts making up a piece of datum as well as their 
categorization. We then introduce OSF-constraints. They are important since, although they 
are formal objects which are part of a logical formalism, they are also quite primitive to 
constitute a low-level implementation logic. 7 We then formalize ^-terms as they not only 
constitute a syntactically pleasant and convenient surface language for data objects in LIFE, 
but also comprise a syntactic OSF-algebra. Namely, they are representations of values of the 
domain of the standard interpretation. Finally, we summarize a few facts about this formalism 
that are relevant as related to the global contents of the paper. 

3.1 OSF-algebras and OSF-constraints 

The building blocks of OSF-algebras are sorts and features. 

An order-sorted feature signature (or simply OSF-signature) is a tuple (S, <, A, T) such that: 

• S is a set of sorts containing the sorts T and _L; 

• < is a decidable partial order on S such that _L is the least and T is the greatest element; 

• <, A) is a lower semi-lattice (s A s' is called the greatest common subsort of sorts s 
and s')\ 

• T is a set of feature symbols. 

An OSF-signature has the following interpretation. An OSF-algebra over the signature 
(<S) <) A, T) is a structure: 

A=(D A , (s A ) seS , {l A ) leT ) 

such that: 

• D A is a non-empty set, called the domain of A (or, universe); 

• for each sort symbol s in S, s A is a subset of the domain; in particular, T A = D A and 
± A = 0; 

• the greatest lower bound (GLB) operation on the sorts is interpreted as the intersection; 
i.e., (s A s') A = s A H s' A for two sorts s and s' in S. 

• for each feature I in T , l A is a total unary function from the domain into the domain; 
i.e., l A : D A i-> D A ; 



7 In fact, the reader familiar with implementation techniques of Prolog [2] should recognize that they are of the 
exact same granularity as WAM term representation and instructions. 
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The notion of OSF-algebra calls naturally for a corresponding notion of homomorphism 
preserving structure appropriately. Namely, 

Definition 1 (OSF-Homomorphism) An OSF-algebra homomorphism 7 : A i-> B between 
two OSF-algebras A and B is a function 7 : D A i— > D B such that: 

• l{l A {d)) = l B {j{d))foralld 6 D A ; 

• 7^) C s B . 

It is straightforward to verify that OSF-algebras together with OSF-homomorphisms form a 
category. We call this category OSF. 

Let V be a countably infinite set of variables. 

Definition 2 (OSF-Constraint) An atomic OSF -constraint is one of: 

• X: s, 

• X = X', 

• XI = X', 

where X and X' are variables in V, s is a sort in S, and I is a feature in T. An OSF -constraint 
is a conjunction of atomic OSF -constraints. 

One reads the three forms of atomic OSF-constraints as, respectively, "X lies in sort s," "X 
is equal to X'," and "X' is the feature I of X." The set Var((j)) of variables occurring in an 
OSF-constraint <j> is defined in the standard way. OSF-constraints will always be considered 
equal if they are equal modulo the commutativity, associativity and idempotence of conjunction 
"&." Therefore, a constraint can also be formalized as the set consisting of its conjuncts. As 
usual, the empty conjunction corresponds to the prepositional constant interpreted as true. 

Let A be an OSF-algebra. We call Val(A) = {a : V h D a } the set of all possible valuations 
in the interpretation A. The semantics of OSF-constraints is straightforward. 

Given A is OSF-algebra, an OSF-constraint <j> is satisfiable in A, if there exists a valuation 
a:Vw D A such that A, a |= (/>, where: 

• A, a \= X : s if and only if a(X) 6 s A ; 

• A, a \= X = Y if and only if a(X) = a(Y); 

• A, a \= XI = Yif and only if l A {a{X)) = a(Y); 

• A, a |= (j) & (j)' if and only if A, a |= (j) and A, a |= ft. 

3.2 V-Terms 

We now introduce the syntactic objects that we intend to use as expressions of approximate 
descriptions to be interpreted as subsets of the domain of an OSF-algebra. Later, we will use 
them as well as representations of values constituting the domain of a specific interpretation. 
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Definition 3 (^-Term) A ip-term tp is an expression of the form: 

X:s(li => tl>i,...,ln=> ipn) 
where 

• X is a variable in V called the root ofip; 

• s is a sort different from _L in S; 

• l\,...,l n are pairwise different features in T, n > 0; 

• %p\ , . . . , %p n are again ip-terms; and, 

• no variable Y occurring in ip is the root variable of more than one non-trivial ip-term 
( i.e., different than Y : T). 



Note that the equation above includes n = 0 as a base case. That is, the simplest ^-terms are 
of the form X : s. 

We can associate to a ^-term ip = X : s(l\ =>- tp\ ,...,£„ =>• ip„) the OSF-constraint: 

(p(ip) = X:s& X.l x = Yi& ... & X.l n = Y n & <p(ip{) & ... & <p(ip n ) 

where Y\, . . . , Y n are the roots of ip\,.. . , ip n , respectively. We say that the OSF-constraint 
(p(ip) is obtained from dissolving the ^-term ip, and refer to the OSF-constraint as the dissolved 
ip-term. We will often deliberately confuse a ^-term ip with its dissolved form (p(ip) and 
simply refer to (p{ip) simply as ip. 

Given the interpretation A, the denotation HipJ A ' a under a valuation a:Vn D A of a ^-term 
ip with root X is given as: 

= {deD A \ a{X) = d, A, a |= V}- 

Note that this is either the singleton {a(X)} or the empty set. 

The type-as-set denotation of a ^-term ip is defined as the set of domain elements: 

m A = U 

aeVal(A) 

This amounts to saying that: 

= {d g D A | there exists a 6 Val(A) such that a(Z) = d, and A,a\=3XZ: ip} 

where Z is a new variable not occurring in ip, X = Var(ip), Z : ip stands for Z = X & ip, and 
X G X is ip's root variable. 
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A ^-term ip with root X corresponds to a unique rooted graph g which is the direct translation 
of the constraint ip together with an indication of the root. The nodes of g are exactly the 
variables of ip. A node Z is labeled by the sort s if the conjunction ip contains a non-trivial 
sort constraint Z : s, and by the sort T, otherwise. For every feature constraint Y.l = Z the 
graph g has a directed edge (F, Z) which is labeled by the feature I. The root of g is the node 
X. Clearly, g is the natural graphical representation of ip? 

3.3 Syntactic interpretations 

Among all OSF-algebras, there are those whose domain elements are concrete data structures. 
We call these syntactic interpretations. We will now present three important examples 
obtained directly from the syntactic expressions of ^-terms. They turn out to be canonical 
interpretations for OSF-constraints. 9 

The most immediate syntactic OSF-interpretation is the OSF-algebra of ^-terms. The domain 
of is the set of all ^-terms, up to graph representation. That is, we identify ^-terms 
as values of if they are represented by the same graph. For example, the two ^-terms 
F : s(£i =>- X : s\li =>- X) and F : s(£\ =>- X, £2 =>• X : s') clearly correspond to the same 
object. Indeed, they have the same OSF-graph representation. 

Sorts s G S are interpreted as: 

s = {ip G D I s' < s, where s' is the root sort of the graph of ip}, 

and features I G T are interpreted as functions I : D 1— > D as follows. Let ip be a ^A-term 
and g its graph. If (X, F) is the edge of g labeled by I, then 1(g) is the ^A-term represented 
by the maximally connected subgraph g' of g rooted at the node F. That is, g' is obtained by 
removing all nodes and edges which are not reachable by a directed path from the node F. 

If X does not have the feature I, i.e., there is no outgoing edge from the root of g labeled I, 
then I is the ^-term Zi^ : T, for a new variable Zi^ uniquely determined by the feature I and 
the ^-term ip. 

For example, taking ip = X : T(£i =>- F : s, £2 =>• X), we have £ l (ip) = Y : s, £ 2 {ip) = ip, and 
£ 3 (ip) = Z ti ^ : T. 

We obtain two other examples of OSF-algebras when we factorize the ^A-term domain by 
further identifying values. The first one identifies two ^A-terms which are equal up to variable 
renaming. The obtained domain obviously spans an OSF-algebra. We call this OSF-algebra 0. 

The second one is obtained from 0 by further identifying two ^-terms if their (possibly infinite) 
tree unfoldings are equal. A tree unfolding is obtained from a ^-term by associating a unique 
node to every feature path. It is well known that a rooted directed graph represents a unique 
rational tree [14]. In our case, we obtain trees whose nodes are labeled by sorts and whose 

8 Refer to Figure 2 on Page 8 for an example. 

9 If an OSF-constraint is satisfiable in some interpretation, then it is also satisfiable in all canonical interpretations. 
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edges are labeled by features. We call these (rational) OSF-trees. It is again clear that the set 
of all OSF-trees spans an OSF-algebra T. 10 

Formally, OSF-algebras can also be introduced as logical structures, namely models providing 
interpretations for the sort symbols as unary predicates and the feature symbols as unary 
functions, which satisfy the Sort Axiom saying, for all sorts s and s', 

X:s&X:s' -» X:iAi'. 

Furthermore, both o and T satisfy a Constructibility Axiom stating essentially the satisfiability 
of any OSF-constraint (f> coming from dissolving a ^-term tp. More precisely, if X = Var{(f)) 
and, for i = 1 , . . . , n, Xj.ij = Y £ <j> for any variable Y, and F, ^ Var((j)), and X; 6 X, then this 
axiom states the validity of: 

V7i....V7„. 3X.<$>&X x .l x = 7i & ... &X n .l n = Y n . 

The constructibility axiom is a generalization of the axiom of functionality which is valid for 
first-order terms. Namely, the axiom which guarantees that, given a constructor symbol/ of 
rank n, an individual X = f(Y\, . . . , Y n ) exists if individuals Y t exist, i = 1, . . . , n. Formally, 
taking </> = X :f, 

Vyi....Vy„. 3X.X:f&X.l = Y x & ... &X.n = Y n . 

The form we give for constructibility is indeed more general than plain functionality since it 
states the existence of something which is not valid for first-order terms; e.g., self -referential 
individuals. For example, 3X. X.I = X is obtained as an instance of our axiom by taking 
n = 0 and </> = X.I = X. 

3.4 OSF-unification 

We describe next how to determine whether an OSF-constraint cj> is consistent; i.e., if it is 
satisfiable in some OSF-algebra A — and, therefore, in particular in . Unification of two 
■^-terms reduces to this problem. 

Definition 4 (Solved OSF-Constraints) An OSF-constraint (/) is called solved if for every 
variable X, (f> contains: 

• at most one sort constraint of the form X : s, with _L < s; 

• at most one feature constraint of the form X.l = Y for each I; and, 

• no other occurrence of the variable X if it contains the equality constraint X = Y. 

W T is essentially the feature tree structure of [7] and [8, 25]. The difference lies in our using partially-ordered 
sorts and total, as opposed to partial, features. 
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In [6, 5], we show that an OSF-constraint in solved form is always satisfiable. Now, by 
Definition 3, the OSF-constraint obtained as the dissolved form of any ^-term ip is de facto 
in solved form. 11 Hence, such a constraint is always satisfiable. It is so, in particular, in the 
canonical interpretation with, interestingly enough, the valuation that assigns to each variable 
X in ip the value in D that is the very ^A-term rooted in X in ip. For this reason, a ^A-term can 
also be seen as a variable substitution. 

Given an OSF-constraint <j>, it can be normalized by choosing non-deterministically and 
applying any applicable rule among the transformations rules shown in Figure 3 until none 



Feature Decomposition: 

V> & ui = v & ui = w 

(B.l) 

tp&U.i=V&W=V 

Sort Intersection: 

ip&U-.s&U-.s' 
(B.2) 

ip & U : s A s' 



Variable Elimination: 

ip&U=V 

(B.3) ifUE Var(il>) and U^V 

ip[V/U]&U=V 



Inconsistent Sort: 

V> &X: _L 
(B.4) 

_L 



Variable Clean-up: 

ip & U= U 
(B.5) 



Figure 3. Basic simplification 



applies. A rule transforms the numerator into the denominator. The expression <j>[X/Y] stands 
for the formula obtained from cj> after replacing all occurrences of Y by X. 



Theorem 1 (OSF-Constraint Normalization) The rules of Figure 3 are solution-preserving, 
finite terminating, and confluent (modulo variable renaming). Furthermore, they always result 
in a normal form that is either the false constraint _L or an OSF-constraint in solved form. 

"More precisely, this is true if we forget superfluous trivial sort constraints of the formX : T. 
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For our purposes, the constraint <j> to be normalized will be of the form %p\ & %p2 & X\ = X2; 
i.e., the conjunction of the dissolved ^-terms tpi and tp2 together with an equation identifying 
their root variables X\ and X^. If (f> normalizes to the false constraint, then the two ^A-terms 
are non-unifiable. Otherwise, the resulting solved OSF-constraint is a conjunction of equality 
constraints and of the dissolved form of some ^-term. This ^-term is the most general unifier 
of tpi and tp2, up to variable renaming. We shall see that this ^A-term has two equivalent 
order-theoretic characterizations (cf, Propositions 3 and 4). 

3.5 OSF-orderings and semantic transparency 

In this section, we first introduce the notion of endomorphic approximation which captures 
precisely and elegantly object inheritance. We also show how it relates to the logic and type 
views. 

Endomorphisms on a given OSF-algebra A, i.e., homomorphisms from A to A, induce a 
natural partial ordering. 

Definition 5 (Endomorphic Approximation) On each OSF-algebra A an approximation 
preorder C_4 is defined such that, for two elements d and e in D A , d approximates e if and only 
if e is an endomorphic image of d. Formally, 

d Qa e iff l{d) = e f or some endomorphism 7 : A 1— > A. 

We shall omit subscripting and write C when A = . Notice that this ordering on ^-terms 
as values of the domain of translates into an information-theoretic approximation ordering on 
ip -terms as types. 

We note that endomorphisms on are graph homomorphisms with the additional sort- 
compatibility property. A node labeled with sort s is always mapped into a node labeled with s 
or a subsort of s. An edge labeled with a feature is mapped into an edge labeled with the same 
feature. Thus, endomorphic approximation captures exactly object-oriented class inheritance. 
Indeed, if an attribute is present in a class, then it is also present in a subclass with a sort that 
is the same or refined. Since features are total functions, this also takes care of introducing 
a new attribute in a subclass: it refines T. Note also, that the restriction of 7 to the set of 
nodes defines a variable binding; it corresponds to the notion of a matching substitution for 
first-order terms. 

The following fact was established in [6, 5]. 

Proposition 1 (^-Terms as Filters) The denotation of a ip -term in is the set of all ifi -terms 
it approximates; i.e., 

M = W e D I V E tl>'}. 
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The next ordering is the type ordering on ^-terms which we informally called "more specific 
than" in Section 1.2 and Section 2. 

Definition 6 (V'-Term Sllbsumption) A ip-term ip is subsumed by a ip-term ip' if and only if 
the denotation of if; is contained in that ofip' in all interpretations. Formally, 

fj><fj>' iff m A q wi A 

for all OSF -algebras A 

In fact, it is sufficient to limit the above statement to the OSF-algebra only; i.e., firpj C firp'J. 

The next and last ordering is a logical ordering on ^-terms. We state it here in less general 
terms than in [6, 5]. 



Definition 7 (^-term Entailment) A ip -term ip entails a ip -term ip'ifand only if, as constraints, 
ip implies the conjunction ofip' andX = X'; more precisely, 



i/> h il>' iff |= il> -> (X = X' & V') 



where X, X' are the roots ofip and ip' andli = Var(ip'). 



It is again sufficient to state the validity of the implication in the OSF-algebra only (namely, 
using |=). This is not true in the more general wording and holds here only because the 
constraints are obtained by dissolving ^-terms and their root variables are bound together. 



Proposition 2 (Semantic Transparency of Orderings) The following are equivalent: 



• ip C ip' if; is an approximation ofip'; 

• ip' < ip ip' is a subtype ofip; 

• ip' y ip ip entails ip'; 
• 



1^1 Q the set of ip -terms filtered by ip is contained in that filtered by ip'. 



The following two propositions are straightforward. Let ip\ and ip2 be two ^A-terms with 
variables renamed apart; i.e., such that Var(ip\ )nVar( ipi) = 0. Let X\ and Xi be their respective 
root variables. Let cj> be the normal form of the OSF-constraint ip\ & ipi & X\ = Xj_. 



Proposition 3 (^A-Term Unification) The normal form (p is the false constraint if and only if 
1*01 H"^ H = 0. for all OSF -algebras A. Otherwise, (j> is the conjunction of equality 

constraints and of the dissolved version of some ip-term ip. This ip-term is the <-GLB of ip\ 
andipi up to variable renaming; i.e., §ip^ A = [^l]]" 4 PI 1^2 1"*- 



Proposition 4 (C-LUB Of two V'-terms) The ip-term ip above is approximated by both ip\ 
and ipi and is the least ip-term for C (i.e., approximating all other ones) with this property. 
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4 Entailment and disentailment of OSF-constraints 

This section deals formally with all the apparatus presented and used informally in Section 2.2. 

In the following, we use (p as the context formula. It is assumed to be an OSF-constraint in 
solved form, although not necessarily coming from dissolving a single ^-term. The variables 
in (j> are global. We shall use X to designate the set of global variables Var((j)) and the letters 
X, Y, Z, . . . , for variables in X. We use ip, a dissolved ^-term, as the guard formula. The 
variables in ip are local to ip; i.e., Var((j)) n Var(ip) = 0. We shall use U to designate the set of 
local variables Var(ip) and the letters U,V,W, for variables in U. The letter U will always 
designate the root variable of ip. We also refer to (p as the actual parameter, and to ip as the 
formal parameter. By extension, we will often use the qualifiers global/local, actual/formal, 
and context/guard, with all syntactic entities; e.g., variables, formulae, constraints, or sorts. 

We investigate a proof system which decides two problems simultaneously: 

• the validity of the implication MX ( (p -> 3U. {ip & U = X) ) ; 

• the unsatisfiability of the conjunction <j> & ip & U = X. 

The first test is called a test for entailment of the guard by the context, and the second, a 
test for disentailment. This second test is equivalent to testing the validity of the implication 
MX (^-» ^3U. (ip&U = X)). 

Since both tests amount to deciding whether the context implies the guard or its negation, all 
local variables are existentially quantified and all global variables are universally quantified. 

The relative-simplification system for OSF-constraints is given by the rules in Figures 4, 5, 
and 6. An OSF-constraint ip simplifies to ip' relatively to (p by a simplification rule p if ^ is 
an instance of p and the applicability condition (on <p and on ip) is satisfied. We say that ip 
simplifies to ip' relatively to (p if it does so in a finite number of steps. 

The relative-simplification system preserves an important invariant property: a global variable 
never appears on the left of a variable equality constraint in the formula being simplified. 
Thus, an equality U = X is a directed relation binding the local variable U to the global 
variable X. Furthermore, a global variable is never eliminated by a local one, or vice versa. 

A set of bindings Uj = Xj, i = 1, . . . , n is a functional binding if all the variables Uj are 
mutually distinct. 

The effectuality of the relative-simplification system is summed up in the following statement: 

Effectuality Of relative-Simplification The solved OSF-constraint (p entails 
(resp., disentails) the OSF-constraint 3U . (U = X & ip) if and only if the normal 

form ip'ofip&U = X relatively to (p is a conjunction of equations making up a 

functional binding (resp., is the false constraint ip' = ±). 
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Feature Decomposition: 

V> & ui = v & ui = w 

(F.l) 

tp&U.i=V&W=V 

Relative Feature Decomposition: 

ip &U = X&U.£=V 

(F.2) if XI = Y e 0 

ip&U = X&V=Y 

Relative Feature Equality: 

(F3) ^&U = X 1& U = X 2 &V= Yl ifXU = Y^W=Y^^> 

ip & U = Xy & U = X 2 & V = Yi & V = Y 2 andV=Y 2 ^^> 

Variable Introduction: 

ip&U = Xi&U = X 2 ifXU = Yi £ <t>, X 2 1 = Y 2 e<t> 

(F.4) - ■ ■ ■ and Yi £ Var{il>) and Y 2 £ Var{^) 

ip&U = X 1 &U = X 2 &V=Yi&V=Y 2 where y is a new variab i e 



Figure 4. Simplification relatively to <f>: Features 



There are two technical remarks to be made. Firstly, observe that in our formulation of the 
entailment/disentailment problem, the implication contains only one equality U = X binding 
only one global variable. However, this is not a restriction. Equations U\ = X\ , . . . , U n = X„ 
can be equivalently replaced by adding X\ = X. 1 & ... & X n = X. 1 to the context (f> and 
U\ = JJ.l & . . . & U n = U.n & U = X to ip, where X and U are new. That is, one obtains 
the conjunction of one equality U = X and a guard which, again, is a dissolved ^-term. 

Secondly, the fact that ip is a dissolved ^-term rooted in U ensures that the test of entailment of 
ip & U = X by (j) does not depend on whether the implication holds in all OSF-interpretations, 
or only in , or T. This is not necessarily so if U is not the root of tp. Indeed, let us 
assume that U is not the root of tp; for example, take i\> to be V.I = U. Clearly, while 
VX (T 3U3V (ip & U = X)) holds in and T, it does not hold in all OSF-algebras where it 
is not guaranteed that every element is the ^-image of some other element. In (and T), this is 
the case since any element X is the ^-image of at least one element; namely, T{1 =^ X). 

Effectuality of relative-simplification is the central result of this section. We now proceed 
through the technical details aimed at establishing its claim in the form of two theorems: 
Theorem 2 and Theorem 3. 
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Sort Intersection: 

V> &U : s &U : s' 

(5.1) 

ip & U : s A s' 

Sort Containment: 

tP&U = X&U:s 

(5.2) ifX : s' G <t>, and s' < s 

■>p&u = x 

Sort Refinement: 

V> & U = X& U: s 

(S3) ifX : s' e (j>, and s A s' < s 

ip&U = X&U:sAs' 

Relative Sort Intersection: 

ip & U = X & U = X' ifX: s e<j>,X' : s' £ <j>, 

(5.4) s A s' < s, s A s' < .v', 

ip&U = X&U = X'&U: sAs' andU:s"£ $ , for any sort s" 

Sort Inconsistency: 

(5.5) 

_L 



Figure 5. Simplification relatively to <f>: Sorts 



Relative Variable Elimination: 

(E1) i>&U = X&V = X lfV eVar W ,V^X^, 
ip[U/V] & U = X& V = X andU^V 

Equation Entailment: 

ip &U = X&U =Y 
(E.2) ifX = ¥ or if X = Y £ <t>. 

■>p&u = x 



Figure 6. Simplification relatively to <f>: Equations 
June 1991 (Revised, November 1992) 



Digital PRL 



Functions as Passive Constraints in LIFE 



29 



4.1 Termination of relative simplification 



For the purpose of showing that the relative simplification rules always terminate, we introduce 
an additional set of rules shown in Figure 7 extending basic simplification. These rules are 
not meant to be used in the effective operation of basic simplification, but only serve in our 
proof argument. The idea is that relative simplification of a guard ip relatively to a context (j) 
can be "simulated" by normalizing the formula (f> & tp & U = X using basic simplification 
(Figure 3) together with the rules of Figure 7. It is not a real simulation, however, as 
Rules (B.1)-(B.5) have for side effect to destroy the context. The point is that one application 
of a relative simplification rule can be made to correspond to at least one application of one of 
Rules (B.1)-(B.5), (X.1)-(X.3). Since this latter system can be shown to terminate, then so 
can relative simplification. 

Rules (X.1)-(X.3) perform essentially the same work as Rules (B.l) and (B.2) except that they 
do no erase parts of the formula. In Rule (X.l), we denote by the reflexive, symmetric 
and transitive closure of = (that is, the equivalence relation on the variables occurring in the 
constraint which is generated by the =-pairs between variables in the constraint). 



Extended Feature Decomposition: 

V> &u.i= u' & ui = u" 

(X.l) ifU' 7^ u" 

V> &U.i= U' & U.i = U" & U" = U' 

Extended Sort Intersection 1 : 

2) !/ * A s < s for any s 

tp &U : s &U : s s ' such that u : s " e ^ 

Extended Sort Intersection 2: 

ib & U : s & U : s' -r . / ^ // r n 

q^2) l f s s s f or any s 

ib &U:s&U:s' &U:s s ' such that u : s " e ^ 



Figure 7. Rules extending basic simplification 



Lemma 1 The extended basic-simplification rules (B.1)-(B.5), (X.1)-(X.3) define equivalence 
transformations; furthermore, they are terminating. 

Proof: The first statement is clear. The proof of the second statement is an extension of the 
termination proof of the basic simplification rules (B.1)-(B.5) from [6, 5]: (X.l) can be applied 
only a finite number of times, since the number of equivalence classes partitioning the finite set of 
variables occurring in the constraint which is to be simplified decreases by 1 with each application. 
(X.2) and (X.3) can be applied only a finite number of times, since they can be applied at most once 
for every sort occurring in the constraint which is to be simplified. | 
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Lemma 2 Let ip & U = X simplify to ip' relatively to (p by a relative-simplification step not 
using Rule (FA). Then, (p & ip & X = U simplifies to (p' & ip" by at most one extended 
basic-simplification step and a finite number of variable elimination (B.3), where ip' and ip" 
are equal up to variable renaming. 

Proof: It can be seen that each relative simplification rule, except for (F.4), corresponds to 
one or several extended basic-simplification rules. Rules (F.1)-(F.3) correspond to Rules (B.l) 
and (X.l). Rules (S.1)-(S.4) correspond to Rules (B.2), (X.2) and (X.3). Rules (E.1)-(E.2) 
correspond to Rule (B.3). This, and the fact that extended basic-simplification rules are equivalence 
transformations, allow us to conclude. | 

Lemma 3 Let ip simplify to ip' of the form ip & U\ = X\ & U\ = Xi by an application of 
Rule (FA) relatively to (p. Then, ip & U\ = X\ simplifies to the same constraint ip' by an 
application of Rule (F.3) relatively to (p. 

Proposition 5 The relative-simplification rules are terminating. 

Proof: This is proved by induction on n, using Lemma 2 and Lemma 3. For every relative- 
simplification chain ip\ &U\ = X\ , . . . , ip n & U n = X„ relatively to <p, there exists an extended-basic 
simplification chain of length n + k, where k 0. This chain starts with the basic constraint 
4> & ip & X\ = U\ & X = U, where X = U stands for the equations we have added so that each 
global variable X is bound to some local variable U (which, if necessary, is chosen new). 

Since, according to Lemma 1, extended-basic-simplification chains are finite, so are relative- 
simplification chains. | 

4.2 Correctness and completeness 

We first note another consequence of the lemmata of the last section. Let V stand for the new 
local variables introduced by Rule (F.4). 

Proposition 6 Let ip & U = X simplify to ip' relatively to (p. Then, (p & ip & U = X and 
3V. ((p & ip') are equivalent. 

Proof: Let us first assume that ip & U = X simplifies to ip' relatively to cp, not using Rule (F4). 
Then, <p & ip & U = X and <p & ip' are equivalent by Lemma 1 and Lemma 2. Let ip & U = X 
simplify X.oip&.U = X&.V = X\ &V = Xi relatively to <p, by an application of Rule (F.4). Clearly, 
4> & ip & U = X and cp & V. (ip & U = X & V = Xi) are equivalent. Thus, with Lemma 3, we can 
apply the first part of the proof on ip &. U = X &. V = X\. | 

The next corollary states a property which is important for showing that relative simplification 
can be used for proving entailment, the invariance property. 



Corollary 1 (Invariance of Relative-Simplification) Ifip & U = X simplifies to ip' relatively 
to (p, then 3U. ((p & ip & U = X) and 3U3V. ((p & ip') are equivalent. 
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It is helpful to list systematically the normal-form properties of the relative-simplification 
system. 

Proposition 7 The constraint ip is in normal form relatively to (p if and only if the following 
conditions are satisfied: 

• ip is in solved-form; 

• a global variable X may occur in ip only in the form _ = X; 

• ifX = _ G (p, then X does not occur in ip; 

• ifV = X£ip, and _ = X.l 6 (p, then _ = VI g" ip; 

• ifV = XEip, and X : s 6 (p, and V : s' 6 ip, then s' < s; 

. r V = X, . , X' = X.i, , . w = x', 

• l f V = Y e ^' and y = y i e( P' then w=Y' 

for some variable W; 

• if \r ■ \" £ i>> an d v " Sl ' G <!>> tnen V : s e tp, 

V = i i : si 

for some sort s such that s < s\ and s < S2- 
Proof: by inspection of the relative-simplification rules. | 

Proposition 8 Let ip' be a normal form ofip & U = X relatively to (j>. Let (j>' be the constraint 
obtained from (j> eliminating all redundancies according to the rules of Figure 8, and removing 
bindings V = _ of new variables introduced by (FA). Then, the constraint (j>' & ip' is a 
solved-form of the constraint (f> & tp & U = X, up to variable renaming. 



Proof: According to Proposition 6, <j> & ifi & U = X is equivalent to . <j> & ifi ' , where stands 
for the new variables. According to the last three conditions of Proposition 7, Rules (R.l), (R.2) 
or (R.3) perform equivalence transformations. Thus, if applications of these rules modify (/>' to <j>", 
then <(>' & ip' is equivalent to cj>" & ip' . 

According to the first four conditions of Proposition 7, cj>" & tp' is in solved-form up to variable 
eliminations via Rule (B.3). More precisely, these variable eliminations are applications of Rule (B.3) 
using new equations of the form V = X introduced by Rule (F.4). They produce possibly equations of 
the form X = Y between global variables; then, further variable eliminations consist of applications 
of Rule (B.3) using these new equations. As a last step, these new equations are removed in order 
to obtain a constraint which is exactly equivalent to <fr & ip & U = X, and not just up to existential 
quantification of new variables. | 



Corollary 2 If the normal form ofip & U = X relatively to (p is not _L, then (p & ip & U = X 
is satisfiable. 
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Redundant Sort Elimination: 

4>&X:s ifU = XeiP,and 

a U : s' £ ip for some s < s 



Redundant Feature Elimination: 

4>&x[ =x 1 i&x' 2 =x 2 i 

(R.2) ifu = x l eip,u = x 2 ei' 

cfr&.X'^Xi.l 

Entailed Sort Redundancy Elimination: 

4> & Xi : s & X 2 : s 

(R.3) ifu = x l ei>,u = x 2 ei> 

<j>&X x :s 



Figure 8. Redundancy elimination rules 

Proof: In [6, 5] we showed that a constraint is satisfiable if and only if it has a solved-form; that is, 
its basic normal form is different from . The statement then follows from Proposition 8. | 

Theorem 2 (Disentailment) Let ip' be a normal form ofip & U = X relatively to (j>. Then, <j> 
disentails 3U. (ip & U = X) if and only if i\>' = _L. 

Proof: If tp' = , then {cj> . ip ') is valid. From Corollary 1, it follows that 

{4> . ip & U = X) is valid, too. If ip' = , then Corollary 2 can be applied. | 

Proposition 9 If the normal form i/j' of ' & U = X relatively to (j) is not a conjunction of 
equations representing afunctional binding, then (f> & -PM. (tp & U = X) is satisfiable. 

Proof: The assumption on the form of ip' means that one of the three following cases is true, for 
some V Var(ip ') bound to some X Var(4>); i.e.,V = X ip ' . 

[(1)] ifi ' contains a sort constraint on V; say, V : s; or, 

[(2)] ip ' contains two equations on V; say, V = X & V = Y; or, 

[(3)] ip ' contains a feature constraint on V, say, V.£ = W. 

For each case, we can find a constraint such that $ & is satisfiable and disentails ip' . Then, 
4> & 4>' also disentails . (ip & U = X); i.e., cj> & cj>' U. {ip & U = X) is valid. Clearly, this 
is sufficient to show that $ & . (ip & U = X) is satisfiable. 

(1) V : s ip '; then, according to the third condition of Proposition 7, cj> contains either no sort 
constraint on X or one of the form X : s' where s < s' . Thus, we set (/>' = X : s" , in the first case, for 
some sort s" incompatible with s; i.e., such that s s " = . In the second case, we choose s " such 
thats s " = and s " s '. 

(2) V = X & V = Y ip '; then, either V : s ip ' and we are in Case (2), or, according to the last 
condition of Proposition 7, at most one of X and Y is sorted in cj>. If Y : s <fr,weset<fr ' = X : s' for 
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some sort s' such that s s ' = . If none of X and Y is sorted in <f>, we set <p ' = Y : s & X : s' for 
some sorts s, s' such that s s ' = . 

(3) V.l\ = V\ ip '; then, cp contains no feature constraint X.l\ = _, according to the fourth 
condition of Proposition 7. Without loss of generality, we can assume that ip does not contain 
redundant conjuncts. 12 There exists a sort s such that ip contains a conjunct of the form: 
Vli = Vi & Vil 2 = V 2 & ... & V n -il n = V„ & V„ : s, for some n 1. Thus, we set 
</>' = X.li = Xi & Xi .i 2 = Xi & ■■■ & X„_ 1 .£„ = X„ & X n : s', for some new variables X\,...,X n 
and some sort s' such that s s ' = . | 

Theorem 3 (Entailment) Let %p' be a normal form of i/j relatively to (/>. Then, (/> entails 
3U. (ip & U = X) if and only if i\>' is afunctional binding. Moreover, (j> & ip' is a solved 
OSF -constraint. 

Proof: If ifi' is a conjunction of equations representing a functional binding, then . ifi 'is valid; 
thus, so is cj> U. ip '. By invariance of relative simplification (Corollary 1), it follows that 
cj> . ip is valid, too. 

If ip' has a different form then, either ip' = , or ip ' contains conjuncts that are not a functional 
binding. The fact that <j> . ip is not valid is trivial in the first case. In the other case, since the 
context cj> is always assumed in solved form and, thus, satisfiable, then it follows from Proposition 9. 

I 

Corollary 3 Let ip' be the relative-simplification normal form of ip & U = X relatively to (j). 
Then, the context entails the guard if and only if the conjunction (j> & i\>' is the solved-form of 
the conjunction (f> & tp & U = X. 

Proof: This is an immediate consequence of Theorem 3 and Proposition 8. | 

4.3 Independence 

The following theorem states that the OSF-constraint system has the independence prop- 
erty [19]. It is well-known that in any constraint system with this property it is possible 
to solve constraints which are conjunctions of constraints and negated constraints by testing 
entailment. Namely, (j> & -^lU\ip\ & . . . ^3U n i/j„ is satisfiable if and only if (j> does not entail 
3Ui. ipi, for every i = 1, . . . , n. Here 314, abbreviates the existential quantification of variables 
in Var^i) - Var{(j>). 

Clearly, (f> entails 3U{. ipi if and only if (f> entails 3Ui3Ui. ipi[Ui/Xi] & Ui = X,-, where 
we introduce a new variable £/,• for every X,- G Var((j>) n Var(tpi). Hence, given that the 

12 That is, we assume that every variable in ip has at least one sort constraint and that redundant constraints in ip 
are removed. A redundant constraint in ip is one of the form XI = Y & Y : T where Y does not occur elsewhere 
in ip. Since we interpret features as total functions, this is not a proper restriction: redundant constraints can be 
moved into the functional expression or the body of the guarded clause without changing the declarative or the 
operational semantics. On the other hand, if this assumption is fulfilled, then the entailment of ip & U = X by (p 
does not depend on whether features are interpreted as total or partial functions. 
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independence property holds, we can use the relative-simplification algorithm in order to 
check satisfiability of conjunctions of positive and negative OSF-constraints. 

For the formulation of the theorem, let us make a few assumptions that do not incur any 
loss of generality. First, we assume that Ui = Var(ipj), Uj 6 Ui, and Var((p) n Var(ipj) = 0. 
Second, since they correspond to different existential quantification scopes, we will assume 
Ui n Uj = 0 for i ^ j. Finally, we again assume that ipi does not contain redundant constraints 
(cf., Footnote 12 on Page 33). 

Theorem 4 (Independence) A constraint (p entails the disjunction of the constraints 
3Ui. {ipi & Ui = Xi), for i = 1 , . . . , k, if and only if it entails one of them. 

Proof: The //"-direction is trivial. It is sufficient to show that if ^ & ,-. (ipi & Uj = Xi) is 
satisfiable for every i, then cj> & /\ (=1 k (ipi & [/,■ = X) is satisfiable. 

Extending the proof technique of Proposition 9, we will find a constraint cp' such that cp & cp' 
is satisfiable and disentails ip\, for all i = 1, . . . , k. As a consequence, <p & <p' also disentails 
,. [ipi & Ui = Xi). That is, <p & cp' ,. (ipi & U t = Xi) is valid. Clearly, this shows that 

<f> & /\ (=1 t ,-. V"i & Ui = Xis satisfiable. 

According to Theorem 3, if </> & ,-. (ipi & t/, = X t ) is satisfiable, then the normal form of 
ipi & Ui = X, relatively to <f> is not a conjunction of equations representing a functional binding. 

Thus, one of the three following cases is true, for some V, Var(ip ■) bound to some X, Var(<fr); 
i.e.,Vi = Xi ip \: 

[(1)] ip ' contains a sort constraint on V,-; say, Vj : s,-; or, 

[(2)] ip l contains two equations on V,-; say, V,- = X t & V,- = T,-; or, 

[(3)] ip \ contains a feature constraint on Vj, say, V,-.£ ( - = W,-. 

(1) If Vi : S{ ip \, then <p contains either no sort constraint on X, or one of the form X, : s\ where 
Si < s'j, according to the third condition of Proposition 7. Let Uy = X,, for ;) = I, ...,m, be the 
family of all equations occurring in the disjuncts binding a local variable f/,. to that same global 
variable X, . We add to <p the sort constraint X, : s'/ where s'/ is some sort which is incompatible with 
those in the sort constraints [/,-. : Sj., and, in case X, : s' { <f>, is furthermore a subsort of s J, s'/ s \. 

(2) If Vi = X; cfe Vj = Yi ip and V,- : s,- ^ ' (otherwise we are in Case (2)), then we add to <j>' the 
conjuncts = Z, & Z,- i & T = Z- & Z- 5 '. Here 5 and s' are two incompatible sorts, and 
the it's are pairwise different features which do not occur in <p and ip if for i = 1, . . . , k. 

(3) Finally, we consider the set / of all indices i, i = 1 , . . . , k, for which Case (3), but neither Case (1) 
nor Case (2) applies. Thus, for i I, ip \ contains a feature constraint of the form V,.£, = V) . 
According to our assumption this constraint is not a redundant conjunct; i.e., there exists a sort s, 
such that ipi contains, in fact, a conjunct of the form: 

Vi.li = Vj ScVj.if = Vf & ... & vV-Kll = V? & V? : s,-, 

for somen 1. We add to ^ ' the conjunct: 



xaj = 



X] &Xj.ij = 



xf& ... &xi 



■n—1 pn 
i -H 



Xf&Xl:sl 
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for some new variables Xf, ... ,X? and for some sort s' t incompatible with s,. 

If there are several disjuncts ipl with exactly the same chain of feature constraints starting in a 

variable bound to the same global variable, then s'j must be chosen to be incompatible with the sorts 
in all of these chains. More precisely, if, for ij = 1, . . . , m, the disjunct ip-. contains the conjunct: 

Vi.li =V} &Vj.lj = Vf & ... & V"-\l" = V" &V" : Si ., 

then s'j is chosen as some sort such that s,\ s \ = for all i j, ij = 1 , . . . , m. | 



5 A general residuation framework 



Constraint Logic Programming (CLP) [18], the guarded Horn-clause scheme of Maher 
(ALPS) [20], Concurrent Constraint Programming (CCP) [23], and Kernel Andorra Prolog [15] 
(KAP) are recent logic programming frameworks that exploit the separation of relational 
resolution and constraint solving. They do so to a full extent by being parameterized with 
respect to an abstract class of constraint systems. In addition, ALPS, CCP, and KAP require 
a test for entailment and disentailment between constraints. This is needed for advanced 
control mechanisms such as delaying, coroutining, synchronization, committed choice, and 
deep constraint propagation. LIFE [6] is a CLP language using a constraint system based on 
order-sorted feature structures augmented with effective functional dependencies. Evaluating 
functional dependencies involves constraint entailment/disentailment since passing arguments 
to functions is done by matching as opposed to unification. Thus, LIFE employs a related, but 
limited, suspension strategy to enforce deterministic functional application. 

In this work, extending the guarded Horn-clause scheme of Maher [20], we present an 
operational and denotational semantics of the general residuation scheme used, in a particular 
way, in LIFE. 

The technique of residuation — delaying reduction and enforcing determinism by allowing only 
equivalence reductions — does not have to be limited to functions. Therefore, we explain it for 
the general case of relations. Intuitively, the arguments of a relation which are constrained by 
the guard are its input parameters and correspond to the arguments of a function. 

Our scheme defines the denotational and operational meaning of guarded Horn-clauses, as 
formulated by Maher, using logical formulae called guarded rules. More precisely, a collection 
of n guarded Horn-clauses turns out to be syntactic sugar for the conjunction of n + 1 guarded 
rules. The quantification of the local variables (of the guard and the rule body) and their 
binding to global variables (of the context) turns out to be crucial for this formalism (cf., 
Section 5.1). 

We introduce a compatibility condition for guarded rules relaxing the requirement of Maher 
that the guards of one relation should be mutually exclusive. While this requirement is not 
part of the general ALPS scheme, it is essential for its completeness results. The compatibility 
condition is shown to be necessary and sufficient for the existence of a model of guarded 
Horn-clauses; i.e., of the corresponding conjunction of guarded rules defining a relation. 
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Since adding guarded rules promotes determinate reduction, the possibility of doing so with 
possibly overlapping guards is important for efficiency. For example, the and predicate on 
three Boolean arguments can be specified with 1 1 guarded rules, instead of just two. 

In contrast with our semantics, the scheme of Maher sees guarded Horn-clauses as defining a 
relation r by considering them as simple Horn-clauses ; i. e. , by ignoring the operational meaning 
of the guard. This amounts to using Clark's completion, yielding a definite equivalence [10]. 
In the scheme of Smolka [24], a relation r is first defined by a definite equivalence defining 
the semantics of this relation, and only then guarded rules are added, helping to enforce 
deterministic derivations. Our improvement here is that one can define a predicate solely by 
ALPS guarded Horn clauses (i.e., the corresponding guarded rules). Also, our guarded-rule 
reduction scheme extends the one of Smolka. Namely, it avoids useless redundancies in 
the syntactic formulation of guarded rules, as well as in the operational semantics as will be 
explained next. 13 

In every guarded-clause language, a resolution step produces a new environment; namely, the 
conjunction of the old environment, which is the constraint part of the resolvent (the context), 
and the guard. This conjunction affects the variables in the body (viz., in LIFE, the right-hand 
side expression of a function definition) after successfully executing the corresponding guard; 
i.e., it "constrains" them in a semantical sense. 

For example, if (in the Herbrand constraint system) Y = f(a) is the context and Y = f(X) is the 
guard and Z = X is the body, then X is constrained to be equal to a. Practically, the matching 
proof is done by unification which yields the instantiation of the body variable X, X = a. In 
order to compute the new environment, this unification is, of course, not repeated. 

The example above can be generalized to constraint systems where the proof of the en- 
tailment/disentailment of the guard can be done by a new operational method that we call 
incremental relative simplification of the guard with respect to the context. In this method, the 
proof of entailment has as a consequence (somewhat like a side-effect) that the conjunction 
of the context and the guard is in solved form, as if normalized by the constraint solver. For 
example, relative simplification of the guard Y = f(X) relatively to the context Y = f(a) yields 
the constraint X = a. Hence, we say that an occurrence of the variable X in the body is then 
instantiated. 

In contrast with Maher 's and Smolka's, our scheme captures the practically relevant case where 
the variables in the body are already instantiated (in the operational sense above) through the 
corresponding guard's entailment proof. In particular, as made explicit in Section 4 this applies 
to the order-sorted feature (OSF) constraint system used in LIFE. So, one thing our scheme 
brings out formally is the justification and accommodation of the implementer's natural idea 
that repeated constraint-solving work should be avoided. 

Independently of its benefits when used in a guarded language, relative simplification is 
an implementation strategy for entailment/disentailment proofs. As such, it formalizes and 



We mean "useless redundancy," not as a pleonasm, but as a deliberate opposition to "useful redundancy" 
serving a pragmatic purpose; cf., Footnote 17. 
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justifies the standard approach of proving matching by doing unification and checking the 
bindings. Furthermore, it is operationally more powerful since it is incremental; i.e., no 
redundant work is done. For example, the test of matching through unification is not 
incremental; bindings of global variables are effected for each test and have to be undone 
afterwards. 

This section is organized as follows. In Section 5.1, we present our formulation of guarded 
Horn-clauses and guarded rules and establish their operational and denotational semantics. 
In Section 5.2, we briefly consider incremental relative-simplification systems in general. 
We exhibit some properties which indicate how they might be constructed from a unification 
system, or more generally, from a constraint solver. In Section 5.3, we put the results of the two 
previous sections together, to derive the operational semantics of residuation. In Section 6, we 
show the use of the general scheme on the specific instance of LIFE'S functional applications. 

5.1 Guarded Horn-clauses and guarded rules 

We assume a ranked alphabet 1Z of relational symbols. A relational atom is an expression of 
the form r(X\ , X n ) where 6 1Z and the X,'s are mutually distinct variables. 

Also, we assume a class of logical formulae (called constraints, noted <j>,ij),..., closed under 
conjunction and including the false constant _L) and a model or a class of models (possibly 
specified by axioms), to which satisfiability and validity will refer in the following. 

A guarded Horn-clause is of the form H :- G [] B., where H, the head, is a relational atom; 
G, the guard, is a constraint formula; and, B, the body, is of the form R & cj>, where R, the 
relational part, is a (possibly empty) conjunction of relational atoms, and cj>, the constraint 
part, is a (possibly true) constraint formula. In the case of constraint systems with a relative 
simplification system, the guard G can be a conjunction of positive and negated constraints. 
We first consider the case where G is a conjunction of positive constraints. 

Here is an example of a guarded Horn-clause defining deterministic list concatenation: 

concat(X, Y, Z) :- X : nil [] Y = Z. 

concat{X, Y, Z) :- X : cons & X.hd = H& X.tl = T [] 

Z : cons & Z.hd = H & Z.tl = L & concat(T, Y, L). 

Since any constraint system can be trivially augmented to express tuples, 14 we may assume 
the relational symbol r in the head to be a unary predicate. This amounts to replacing 
r(U u ...,U n ) :- G [] B with r(U) :- U = (U u ...,U n ) & G [] B. Here, the constraint 
with tuple notation U = (U\,..., U n ) is just a shorthand for the specific constraint encoding 
multiple arguments in the system being considered. For instance, in our OSF-constraint 
system, U = (U\, . . . , U n ) stands for U.\ = U\ & . . . & U.n = U n . 

14 Although doing so may increase significantly its expressive power, this is not important in the context of this 
presentation. Indeed, our considering only unary relations is not properly restrictive, but essentially a notational 
convenience. 
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A guarded rule is a logical sentence of the form: 
VUVU. ( G -> (r(U) <-> 3V.B) ). 

It is important to note that the existential quantification 3V of the variables local to the body 
may not be pulled out; i.e., the guarded rule may not be written (V) ( G — > (r(U) <-> B)). 

Let H = r(U) where r 6 72. and U is a variable. Let U = Var(G) - {U} and V = 
Var(B) - (WU {£/}). Then, the guarded Horn-clause H :- G [] B corresponds to the above 
guarded rule. 15 

For example, the guarded rules corresponding to our foregoing definition of concat are: 
Vt/VX ( (17.1 = X&X:nil) -» 

(concat{U) <-» 3{7,Z}. (£7.2 = 7 & t/.3 = Z & 7 = Z) )) . 

VIN{X,H,T}. ((U.l = X & X : cons & X.hd = H & X.tl = T) -» 
(concat(U) ^ 3{Y,Z,L}. ( U.3 = Z & Z : cons & Z.hd = H & Z.tl = L & 

U.2=Y&concat(T,Y,L)))). 

In the first rule, the variable X does not occur in the rule's body; thus, we can write it: 

Vt/. ( 3X. (U.l = X & X : nil) -> 

(concat(U) <-> 3{7,Z}. (f/.2 = 7 & f/.3 = Z & 7 = Z) )) . 

In the second rule, the scope of the variables // and T extends over the guard and the body. 

A ( constrained) resolvent Risa (possibly existentially quantified) formula of the form R & <j>, 
where R consists of a (possibly empty) conjunction of relational atoms, and cj>, its context, is 
a (possibly true) constraint formula. In the following, we will consider only the derivation of 
resolvents without quantification. Indeed, only the matrix of a quantified resolvent is rewritten 
(adding possibly more quantifications). 

We will call the variables in Var(R) global and denote them generically as X, Y, Z, etc. The 
variables in a rule are called local. Except for the case of explicit examples (e.g., concat), 
local variables are generically named U, V, W, etc. The variables that are local to the body 
are within a quantification scope contained in that of those variables that are also in the guard. 
Local and global variables will always be assumed distinct, by implicit renaming if necessary, 
so as to avoid capture. 

15 It is interesting at this point to observe that our formulation of guarded rules is different from Smolka's [24] 
where the guarded rule above is written in the form: 

Vt/. ( 3U. G -> ( r(U) <-> 3U3V. (G&B))). 

We will compare our formulation to Smolka's in more detail in Section 5.3. 
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The next proposition characterizes the reduction of a resolvent by application of a guarded 
rule into an equivalent resolvent. 

Proposition 1 0 Given the guarded rule: 

VUVU. ( G -> {r(U) <-> 3V.B) ), 

the resolvent R = R & r(X) & (j> is equivalent to the derived resolvent: 
3U3U3V. {R&B &0&G&U = X), 

if the context (j> of the resolvent entails the guard of the rule; i.e., if: 
4> -» 3U3U. {G&U = X) 
is valid. 

Proof: The entailment condition says that the context <f> is equivalent to its conjunction with the 
instantiated guard, 

<f> 4>&U.(G&U =X) 
U.{4>&G&U = X). 

The resolvent/? = R & r(X) & ^ is equivalent to: 

U. {R & r(U) & (j)&G&U =X). 

Since the variable U and the variables in are universally quantified, the guarded rule can be written 

as : 

(r{U) &G) . (B & G). 

It follows that R is equivalent to: 

U.{R&(j)&B&G&U =X). | 

After the application of a rule, local variables become variables of the derived resolvent and 
are, then (and only then), considered global. 

Let us assume that the constraint cj> entails the guard G. Then, although (j> is equivalent to 
3U3U. [(f) & G & U = X), the conjunction B & (f> is generally not equivalent to the quantified 
formula 3U3U. (B & (j> & G & U = X). Namely, the guard G generally shares variables 

Research Report No. 13 June 1991 (Revised, November 1992) 



40 



Hassan A'ft-Kaci and Andreas Podelski 



with the body B of the guarded rule. Roughly, the conjunction <j> & G & U = X provides the 
instantiation of input parameters used in the body B of the guarded rule. 16 

We now consider the case of a guarded Horn-clause where the guard consists of a conjunction 
of positive and negated constraints. 

For example, the guarded Horn-clause: 
concat(X, Y, Z) :- ->(X : cons) [] X : nil & Y = Z. 
corresponds to the guarded rule: 
VI/. ( ->3X. (U.l=X&X: cons) -» 

(concat(U) <-» 3{Y,Z}. (X : nil & U.2 = Y & U.3 = Z & Y = Z) ) ) . 

Generally, the guarded Horn-clause H :- G & A/=i, ,k D B- corresponds to the guarded 
rule: 

Vt/VW. (G& /\ ^Uj.Gj -> (r(I/) <-> 3V.fi)). (1) 

y=i,...,* 

We will always assume that the sets = Vfar(Gy) - {I/} are pairwise disjoint, as well as 
disjoint from U and from V. 

Proposition 1 1 Given the guarded rule (1), the resolvent R = R & r(X) & (f> is equivalent 
to the resolvent: 

3U3U3V. {R & B & 4> & G & U = X), 

if the context (f> of the resolvent entails the guard of the rule; i.e., if the implication: 
(j) -> 3V3U. (G&U = X) 
is valid and the conjunctions: 
(j) &Gj &U = X 

for j = 1 , . . . , k are unsatisfiable. 

16 All conjuncts in the guard which do not share variables with the body of the guarded rule being applied, may 
be omitted in the derived resolvent. 
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Proof: The proof of Proposition 10 can be rephrased by replacing G with the new guard. Under the 
entailment assumption, the context $ is equivalent to $ & j. (Gj & U = X), and since Gj does 
not share variables with B, B & $ is equivalent to B & $ & j. (Gj & U = X). This means that 
the conjuncts j. (Gj & U = X) can be omitted from the derived resolvent. | 

The collection of the guarded Horn-clauses r(U) :- G ; [] B ; with the same head in a 
given program stands for the conjunction of the following n + 1 guarded rules, where 
= Var(Gi) -{U} and V,- = Var(Bi) - (W,- U {£/}) for i = 1, . . . , n: 

VINUi. (G« -> (r(f/) ^ IVi.Bi)), 

for j = 1, . . . ,n, and: 

VI/. ( ^iGi & ... & -^M n G n -> ( r([/) <-> J_ ) ). 

We assume the guards G,- to be of the general form, as in the guarded rule (1). In our examples, 
the n + 1st guarded rule (the "otherwise" rule) is always left implicit. 

Whenever they are consistent, the n + 1 guarded rules above define the predicate r. This 
follows from the next fact. 

Proposition 12 The following formula is a logical consequence of the guarded rules which 
stand for the guarded Horn-clauses r(U) :- G,- \ B ; , (i = l,...,n): 

VU.{r{U)~ \/ 3Ui3Vi. (G, ). (2) 

i=l,...,n 

Proof: The proof for the -part of the formula is clear. For the -part we consider the two cases 
whether or not r(U), and therefore r(U) , holds in an interpretation. In the first case, there 
is nothing to show. In the second case, we use the n + 1st guarded rule, the "otherwise" rule, by 
contraposition. | 

It is important to observe that this is in contrast with [24], where, conversely, Formula (2) is 
called a definite equivalence and the guarded rules must be its logical consequences. 

Not every conjunction of guarded rules has a model. In fact, in order to be a model an 
interpretation must satisfy the following compatibility condition: 




This condition is trivially fulfilled if the guards are mutually exclusive. 
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Proposition 1 3 Every model of the definite equivalence (2) and the compatibility condition (3) 
is a model of the conjunction of the n + 1 guarded rules of the form (1), and vice versa. 

Proof: By (2), G, & ,. B, implies r(U). If G, & r(U) holds in an interpretation, then, by (2), there 
exists some j such that Gj & j. Bj holds. But then, by (3), ,. B t holds also. The n + 1st guarded 
rule is an immediate consequence of (2). The other direction follows from Proposition 12 for (2) and 
from combining the guarded rules pairwise for (3). | 

We call a model of a guarded Horn-clause program a model of the conjunctions of guarded 
rules which stand for the collections of guarded Horn-clauses with the same head in the 
program. 

Corollary 4 If the compatibility condition is valid, then a guarded Horn-clause program has 
a least model. 

Proof: It is a well-known fact that a system of predicate definitions such as (2) has a least model 
extending the model of the theory of the constraint domain (cf., [18, 17]). The statement then follows 
from the assumption and Proposition 13. | 

For the sake of completely relating our approach to others, let us mention one idea which is 
not (yet) implemented in LIFE. Given a program consisting of definite clauses, one can add 
explicit guarded rules which are logical consequences of the program [24]. Now, assume a 
relation r declared by the definite clauses r(X) <— 3t/,-. fa & R,, i = l,...,k. Thus, the 
completed form of r is: 

k 

r(X) <- \/ ( 317/. fa&Ri). 
i=i 

Then, the following guarded rules are always immediate consequences of this definition: 

->3Ui. fa& ... & -i3t7,-_i. fa-i & 

-.31^1. fa +1 & ... & ~^3U k . fa -> (r(Z) <-> 3U h R t & fa) 

for i = 1 , . . . , k. These guarded rules can be left implicit. Although semantically redundant, 
these additions are of great pragmatic use for efficient reductions. In fact, adding them is 
paramount to enabling the immediate reduction of a determinate goal; i.e. , one whose definition 
offers only one alternative in its context. 17 This appears to be related to what has been quoted 
to us as the "Andorra Principle" [15], a strategy of preferentially selecting goals which have 
at most one alternative, and is a basic principle underlying the Andorra Model [22]. 

17 This is an example of a useful redundancy; cf., Footnote 13. 
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5.2 Incremental relative-simplification systems 

If G is a guard of the general form, as in the guarded rule (1), and (j) is the context of a 
given resolvent, then we say that the context entails the guard if the validity condition and the 
unsatisfiability conditions in Proposition 1 1 are fulfilled. We say that the context disentails the 
guard if the implication cj> — > -\3U3U. (G & U = X) is valid, or if one of the implications 
(f> — > 3U3Uj. (Gj & U = X) is valid, for j = l,...,k. Again, disentailment is not the 
negation of entailment; i.e., the two problems are not dual to each other. Thus, a guarded rule 
system needs to carry out two different tests. 

If the context (f> of a resolvent R entails the guard, then the context of any resolvent derived 
from R entails the guard, too. In other words, a context can only become stronger in each 
derivation step; i.e., constraints are added as conjuncts. The same holds for disentailment. 

If the context (f> neither entails nor disentails the guard, there might still be a derivative of R 
whose context entails, or disentails, the guard. This is why incrementality is important. In 
the case where both tests fail, for the context cj> of the current resolvent R, the proof which 
has determined this will be continued by the proof for the strengthened context cj> & ft of a 
resolvent R' derived from R, instead of starting from scratch. That is, the proof of the guard 
"stalls" in the context of R; the proof of the guard in the context of R' "resumes" it. 

The following observation is useful for deriving an entailment test from a constraint normal- 
ization system. 

Proposition 1 4 The context (j) entails the guard G if and only if the conjunction (j) & (G & U = 
X) is equivalent to (j) & G' for some formula G' such that G' is valid. 

Proof: If G' is valid, then (j> G ' is also valid. Therefore, (j> is equivalent to ^ & G' . According to 
the assumption, $ & (G & U = X) $ & G 'is valid. Thus, $ is equivalent to $ & (G & U = X). 
This shows that cj> U(G & U = X) is valid. For the other direction, it is sufficient to choose 

G' = ((G & U = X) 4> ) . Clearly, then cj> & (G & U = X) is equivalent to ^ & G', and also G' 
is valid. | 

The 'only if direction in this proposition is crucial for practical purposes. Given (f> and G, the 
formula G' has to be effectively found, and its validity has to be effectively determined. 

In what follows, (f> and tp are two constraints where (f> is a context formula assumed be 
consistent such that Var{tp) n Var((j>) = 0. 

Corollary 5 If the guard consists of a positive constraint, say tp, then the context entails the 
guard, i.e., (j) — > 3U3U. (ip & U = X) is valid, if and only if the conjunction (j) & ip & U = X 
is equivalent to (f> & tp' for some formula ip' such that 3U3U. ip' is valid. 

Proof: The proof is a straightforward rephrasing of the previous proof. | 
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The corollary gives the idea about how one generally intends to obtain the formula G' from 
Proposition 14. Namely, by applying a suitable constraint normalization system on the 
conjunct (f> & tp & U = X successively, as long as this is possible, without modifying (f>. 
Clearly, the main difficulty is completeness; that is, whether under entailment, one can actually 
derive a constraint cj> & i\>' such that 3U3U. ip' is valid. 

Corollary 6 The context (f> disentails the guard ip, i.e., (f> — > -\3U3U. (ip & U = X) is valid 
if and only if<j> & ip & U = X is equivalent to <j> & _L. 

Proof: We only need to note that if: 

4>&u.{ip&u =x) 4>& '. v' 

is valid, then also: 

4>&u.{ip&u=x)4>& '.v>'. I 

Again, it is clear how one may try to obtain the disentailment proof. Namely, by applying 
the constraint solver on the conjunct cj> & ip & U = X successively, as long as this is possible 
without modifying (j), or until one arrives at (j) & _L. Again, the difficulty is completeness. 
That is, whether under disentailment, one can actually derive _L in this way. 

Definition 8 We call a relative-simplification system a reduction system which, given the 
context-constraint (j) and the guard-constraint i/j and the binding U = X of the variable U in 
i\> to the variable X in (j>, reduces ip & U = X to a constraint ip' with V = Var(ip') — Var((j)) 
such that: 

• 3V. tp' is valid if and only if (j> entails ip; i.e., (j> — > 3U3U. (ip & U = X) is valid; 

• ip' = _L if and only if (j) disentails ip; i.e., (j) — > -^3U3U. (ip & U = X) is valid. 

Moreover, at each intermediate simplification step deriving a constraint ip' with V = 
Var(ip') - Var((j)) the following relative-simplification invariant holds: 

• <j> & 3U. (ip & U = X) is equivalent to (j) & 3V. ip'. 

Proposition 15 (Confluence of Relative Simplification) Any relative-simplification system 
can be transformed into an incremental one simply by closing the simplification relation with 
respect to the following condition. Ifip simplifies to ip' relatively to (j), and ip simplifies to ip" 
relatively to (f> & (j)', then also: 

• ip simplifies to ip' relatively to (j> & (j)', and 
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• ip' simplifies to ip" relatively to <j> & (f)'. 

The statement says that any relative-simplification system can be assumed to be already 
incremental. 

Proof: The relative-simplification invariant still holds if one considers every simplification relatively 
to <f> also a simplification relatively to <j> & (/>' . Namely, if <j> (ifi ip ') is valid, then so is 
4>&4>' (V> ip ')■ " I 

Generally, it is not evident how to transform the specification of a non-incremental relative- 
simplification system (e.g., by rewrite-rules) into an incremental one (e.g., by adding or 
modifying the rules). Our experience is limited to cases (essentially to the constraint systems 
over finite or rational first-order [11, 13] or feature trees [7, 25]) where incrementality came 
for free. 

5.3 Operational semantics of residuation 

We assume a constraint system with an incremental relative-simplification system as described 
in the previous section. Let the relation r be specified by n guarded Horn-clauses, each of the 
form r(U) :- G [] B, corresponding to n + 1 guarded rules, each of the form (1). Let the guard 
G be of the form: 

G = & A ^ U i- # 
j=i,...,k 

Let us consider the hypothetical reduction of the resolvent R = R & r(X) & (j) to the new 
resolvent: 

R' = 3U^3V. [R &0&B& tP' 0 & /\ -^M\. tj;}), 

where the constraints ipj & U = X simplify to ipj relatively to the context <j>, with Var(ipj) = Uj 
and Var(ipj) - Var((j>) = Uj forj = 0, 1, . . . , k. 

Proposition 16 (Correctness Of reduction) The reduction step from the resolvent R to the 
resolvent R' is always a correct reduction step: R' implies R; i.e., all solutions of R' are 
solutions ofR. 

Proof: This follows from Proposition 12 and the relative-simplification invariant. | 

The reduction step from the resolvent R to the resolvent R' is also a complete reduction step: 
(with Proposition 16) R is equivalent to R'. Equivalently, 
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Proposition 1 7 (Completeness Of reduction) The solutions ofR' are exactly the solutions 
ofR, if: 

• 3Uq. ipQ is valid, and, 

• iff - = _L, for each j = 1 , . . . , k. 

Then, R' is equivalent to R & (j) & ip' 0 & B. 

Proof: This follows from Proposition 1 1 and the relative-simplification invariant. | 

In the case of relative-simplification systems based on constraint solvers (e.g., implementing 
unification), (j) & ip' Q is already essentially the solved form of (j) & ipo- This is the case for 
OSF-constraints (cf, Section 4). That is, our scheme captures the practically important case 
when the conjunction of the context and the guard has already been solved through the guard 
proof. 

For comparison, let us consider the guarded-rule reduction defined by Smolka in [24]. There, 
the "commit condition" is that the conjunction of the context (j) and the negated guard -tip be a 
constraint that simplifies to _L, the inconsistent constraint. Under this condition, the resolvent 
(j) & r(x) & R reduces to: </>" & R' & R if the (renamed) guarded rule ip (r(X) ^ (j)' & R') 
is used, and the constraint (j) & (j)' simplifies to (j)". 

A consequence of this on the syntactic formulation of guarded rules is that, in Smolka's 
scheme, the part of the guard which constrains variables in the body must be repeated in the 
constraint (j)' in the body of the guarded rule. That is, the guarded rule: 

VUVU. ( G -> (r(U) <-> 3V.B) ). 

must be written in the form: 

VI/. ( 3U. G — > ( r(U) <-» 3U3V. (G & B)) ). 

As a result, in Smolka's operational semantics of guarded-rule reduction is that the simplifi- 
cation of the constraint (f> & $ does more work than is necessary after relative simplification. 
Namely, it must repeat the simplification of the conjunction of the context and the guard. 

Thus, for constraint systems with relative simplification, our formulation has an advantage 
in efficiency, although it is semantically equivalent to Smolka's. In our scheme, it is only 
necessary to normalize the constraints in B, but not those in G, in conjunction with the 
resolvent's context in the case where that guarded rule is applied. 

The next proposition considers the case of disentailment. Here, of course, no instantiation 
is effectuated. It states that the reduction step from resolvent R to the resolvent R' can be 
excluded whenever/?' is equivalent to _L. Equivalently, 
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Proposition 18 (Failure Of reduction) The set of solutions of R 1 is empty, if: 

• i/jq = _L, or, 

• 3Uj . ip'j is valid, for at least one of j = I,.. . ,k. 

Proof: This follows from Proposition 12 and Definition 8. | 

The foregoing propositions might suggest several possibilities for fine details of the operational 
semantics concerning resolvents with residuations; i.e., relational atoms r(X) for which none 
of the guards of the n + 1 guarded rules for r is entailed. The answer of the query could be 
given by the residuated resolvent; i.e., with the relational atom r(X). Or, in order to make the 
answer more refined, it could be given by the disjunction of all resolvents R' which are not 
equivalent to _L. 

The constraint part of such a resolvent R' can be further tested for satisfiability. Possibly, 
it contains negated constraints. Assuming that the constraint system has the independence 
property (cf, Theorem 4), such a constraint part can be tested for satisfiability by testing 
entailment of each of the negated constraints by the positive constraint. 

6 Functional application over V'-terms 

We now show how the foregoing general residuation scheme can be used to explain functional 
application over ^-terms. A ^A-term is a constrained data structure. Hence, as an expression, it 
can be further constrained by being conjoined with other functional and relational constraints. 
We will call such an expression a constrained tp-term. For example, X : cons(tl =>• T : 
list) & length(T) = L & L : even is a constrained ^-term specifying lists of odd length. 

A constrained ^-term is an expression of the form ip & C where ip is a ^-term and C is a 
possibly empty conjunction of OSF-constraints and relational atoms. 18 

In LIFE a function/ is defined by: 
f{pi) -> e\. 
f{p n ) <?«• 

where p\,...,p n are ^-terms and e\,...,e n are constrained ^-terms. We assume that the 
variables occurring in each rule/(p ( ) — > are different. We shall use Uj for Var(p;) and V,- for 
Var(ei). Again, for ease of notation and without loss of generality, we consider only the case 
of unary function symbols/. 

18 The concrete syntax in LIFE for a constrained ^-term is: ip \ C. This is read as such that C." 
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The above form of function definition is in fact syntactic sugar for a collection of n guarded 
Horn-clauses of the form: 

(-1 

MU,V) :-U: Pi & /\^U: Pj | V : e x . 

7=1 

for i = 1 , . . . , n; and thus, as seen in the previous section, for a conjunction n + 1 guarded rules. 
The symbol f r is a binary relation symbol associated to /. We shall also use the functional 
constraint notation Y = f(X) as sugaring for the relational atom/ r (X, Y), and the constraint 
Y :f(t) with the functional expression/^) as sugaring for 3X. X : t & Y = f(X). 

We have everything ready now, with the general scheme of residuation of Section 5, to explain 
the operational semantics of functional reduction in LIFE as a matter of instance. Indeed, that 
scheme is sufficiently general to account for argument matching seen as constraint entailment 
and priority of rule order thanks to negative constraints imposing disentailment of previous 
patterns. 

We make this explicit in the form of the following two propositions. They are immediate 
instances of Proposition 11 and Proposition 17, respectively. 

Proposition 1 9 The resolvent & cj> &.Y :f(t) is equivalent to the resolvent: 
3X3Ui3Vi. R&fi&X-.t&Y-.ei&X-.pi 

if the context </> & X : t disentails the OSF -constraints X : Pjfor j = 1 1, and if it entails 
the OSF -constraint X : p t . That is, if the conjunctions (j> & X : t & X : pj are unsatisfiable for 
j = 1 — 1, and the implication (j> &X : t — > 314,. X : pi is valid. 

Proposition 20 If for j = 1, . . . , i, the OSF -constraint X : pj simplifies to the OSF -constraint 
ipj relatively to (f> &X : t such that ip\ = _L, ... , = _L, and ipi is afunctional binding, 19 
then the resolvent & <j> & Y : f(t) is equivalent to the resolvent: 

3X3U t 3Vi. R&(/>&X:t&Y:ei&tl>i. 

6.1 Functional application in the V'-term calculus 

Next, we express functional application in the framework of the calculus of subsumption and 
unification of ^-terms. 

We use a fact that follows directly from Proposition 2 and Proposition 3. Namely, the 
implication X : t — > 3Uj. X : pi is valid if and only if the ^-term t is subsumed by the ^-term 

"Recall, from Section 4, that a functional binding is a conjunction of variable equalities U i = X i ,i= 1, . . . , n 
where all the variables [/,■ are mutually distinct. 
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Pi. The OSF-constraint X : t & X : p,- is unsatisfiable if and only if the ^-term t is non-unifiable 
with the ^-term p;. 

We will say that the equality t = p between two ^-terms is satisfied under a valuation a in an 
interpretation A, if and only if A, a |= t = p iff M"*' = [[pi"*' 01 ; i.e., if the two ^-terms have 
the same denotation under a. 

Proposition 21 If the tp-term t is non-unifiable with the tp-terms pi, .. ■ ,Pi-i and if it is 
subsumed by the ip-term pi, then the functional expression f(t) is equivalent to the expression 
e { constrained by t = p,. Formally, 

Y:f(t) <-> 3Ui3Vi.Y:ei&t = pi (4) 
is valid. If t is non-unifiable with the ip-terms p\ , . . . ,p„, thenf(t) is equivalent to _L. 

Proof: The statement follows from Proposition 19 and the fact that , a = X. (X : t & X : p ,) if 
and only if , a = t = p ( . | 

6.2 Endomorphisms and functional application 

We have related functional reduction to the view of tp -terms as constraints and as sets. In order 
to be complete with respect to the three (logical, term-as-set, and algebraic) characterizations 
of the information contents of ^-terms, we now give an algebraic characterization of functional 
application as graph pattern-matching. This view generalizes the familiar notion of matching 
by computing substitutions. 

If a function is defined over first-order terms, say, in the form/(p) = e, then the function 
applied to the term t yields the expression a(e) if the term t is matched by the pattern p 
via the matching substitution <r; i.e., f{t) = a(e) if a(t) = p. This is not so obvious for 
■^-terms. Let us take, for example, the identity function on ^-terms, which is defined in 
the form/(X : T) = (X : T). When applied to the tp-term t = (X : s(l X' : s)), the 
function returns the same ^-term. However, this does not exhibit a substitution a such that 
a(X : T) = (X : s(£ X' : s)). 

Recall that an approximation ordering C on ^A-terms is induced by the ordering on , the 
OSF-graph algebra (cfi, Section 3.5). An endomorphism 7 is said to be principal in a set of 
endomorphisms if for every endomorphism 7' in this set, there exists an endomorphism p such 
that 7 o p = 7'. 

We define the application of an endomorphism on a constrained ^-term of the form ip = 
1P0& Ak=i{r k {Y k )&Y k :<p k ) by: 

m 

7 (V0 = tW& AW f ') &f ' : ^))' 

k=l 
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Let f(p) — > e define the function /, and let t be a ^-term such that p C t. Let 7 be a 
principal OSF-endomorphism among all those that map p into t. The next proposition states 
precisely the following fact: applying the rule means that f(t) = f(j(p)) = 7(e) = j(f(p))- 
In other words, principal OSF-endomorphisms preserve functional application (i.e., functional 
evaluation and OSF-approximation commute). 

Proposition 22 If no i/j-term is approximated by both t and Pj for j = 1, . . . , i — 1, and t is 
approximated by pi, then the functional expression f(t) reduces to the tp-term 7(e ! ), where 7 
is a principal endomorphism mapping pi on t; i.e., 



f{t) = 1 {e i ), if 1 { Pi ) = t. (5) 

If no tp-term is approximated by both t and Pifor i = 1, . . . , n, then the functional ip-termf(t) 
is±. 20 



Proof: By Proposition 2, we know that the conditions in Proposition 22 on the OSF-graphs are 
equivalent to the conditions in Proposition 21 on the corresponding V'-terms. In particular, this 
implies the existence of the principal endomorphism 7 with j(pi) = t. From Propositions 3 and 4, 
Page 25, we know that X : t & X : pi is equivalent to X : 7(7?,) & <f> where ^ is a functional binding 
(of variables of/?, to variables of t). Moreover, the equivalence: 

m m 

/\Y k :i> k &X:t&X: Pi /\Y k : 7 (^) & X : 7 {pi) & <f> 

k=0 k=0 

is valid. Now, if e ; is of the form tp 0 & AILiW^) & : V^)' then Y 0 : e, & X : t & X : p, is 
equivalent to 7(io : <?,) & X : -f[pi) & <j>. Up to existential quantification of new variables occurring 
only in cj>, this formula is equivalent to 7 (Yq : e,) & X : y(pi). Thus, Equation (5) follows from 
Proposition 21. | 

The proposition above justifies the intuition of functional application over ^A-terms. The 
variables of the pattern p { in the function definition are instantiated by variables of the calling 
term t, together with their sorts and their attached subterms, so that p; becomes syntactically 
equal to t; then the variables in the expression e,- are instantiated accordingly, so that e,- becomes 
the expression which rewrites f(t). 

The variables in ei which are not shared by the pattern pi must not be instantiated; this is the 
reason why we require the endomorphism mapping p t on t to be principal. 

For example, let the function / be defined in the form f(U:T) — > U' : T(£ =^ U : T). 
Applied to the ^-term t = X : s(l X' : s), the function returns f(t) = U' : T(l (X : 
s(l X' : s))). Here, the principal endomorphism 7 maps (U : T) on (X : s(l X' : s)) and 
is the identity elsewhere. In particular, 7 does not unnecessarily refine the sort of U'. 

20 Note that, in (5), we use the metalogical equal sign (=), as opposed to the logical one (=). This means that 
in any resolvent we can replace the expression on the one side by the expression on the other side and obtain a 
resolvent which is equivalent up to existential quantification of new variables. 
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The endomorphic approximation ordering is very interesting when used on the graph repre- 
sentations of ^-terms. It is in fact an immediate generalization of first-order term matching. 
More conveniently, if a graph tpi approximates a graph tp2 with an endomorphism 7, this 
approximation is characterized exactly by a mapping j v : Var(ip\) i-> Var{tp2) that can be 
constructed inductively as follows: 21 

• j v (Root(i/j\)) = Root{^ 2 ); 

• for every X\ 6 Var(ipi) and for every feature I 6 T such that l(X\) = Y\, then 
7v(ri) = '(7v(*i))- 

It is clear that this construction is well-defined by the very definition of endomorphic 
approximation. In fact, a mapping such as j v can be extended to all variables j v : V i-> V ; it 
can be defined simply from 7 as j v (Root(i/;)) = Root(j(i/;)), for all if> in . 

For example, provided that married .person < person, smith < name, male < gender, and 
female < gender, then the term: 

X\ : person(lastname =>- X2 : name, 

spouse =>■ X3 : person(lastname =>■ X2, 

spouse =>■ Z4 : person), 

sex =>■ X5 : gender) 

approximates the term: 

Fi : married 4>erson(lastname =>■ F2 : smith, 

spouse =>■ F3 : married \person(lastname =>■ F2, 

sex =>■ F4 '.female, 
spouse =>• Fi), 

sex =>- F5 : male) 

with the endormorphic mapping of variables: 7 v (^i) = Fi, 7 V (^2) = F2, 7^X3) = F3, 
7v (X 4 ) = F 1 ,and 7v (X 5 ) = F 5 . 

As for a matching algorithm, the basic unification rules of Figure 3 are sufficient. Evidently, 
if the basic unification yields _L, then this shows disentailment. Otherwise, we will exhibit 
conditions on the obtained variable bindings which characterize entailment. 

First, observe that after normalizing a consistent OSF-term using Rules (B.1)-(B.5), the 
variable equalities left in the solved form generate an equivalence relation on the variables. 
We call variable coreference this equivalence relation. 

Given two ^-terms ipi and ip2, to decide whether ip2 E ipi and, if so, to compute the principal 
endomorphic mapping j v from Var^) to Var{if}]) (the "matching substitution"), we proceed 
as follows: 

21 Given an OSF-graph i/i, we use the notation Root(il>) to designate its root variable, Sort^(X) to designate the 
sort of the variable X in ifr, and 1^{X) = Y to express the fact that i/> has an arc labeled L between nodes X and Y. 
(When no ambiguity may arise, we omit the subscript ip.) 
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• [1.] let tp[ be the ^-term obtained from tpi by completing it with new variables sorted 
with T at any path occurrence of ip2 that is not in tpi; 

• [2.] let (f> be the normal form of Root{ip\) = Root{ip2) & ip[ & 

• [3.] if <j> is not _L then let 71 (resp., 72) be the canonical surjection of Var(ip[) 
(resp.,Var(ip2)) onto the coreference classes of <j>; i.e., the function that maps a variable 
to its coreference class. 

Then, 

Theorem 5 ^2 E ^1 with principal OSF-endomorphism 7 if and only ifcj) is not _L and 71 is a 
sort-preserving bijection. 22 Then, *y v = j^ 1 072 : Vari^tpi) 1— > Var{tp\) is the corresponding 
endomorphic variable mapping. 

Proof: First of all, let us observe that completing ip\ into ip[ with feature occurrences of ipi with new 
-sorted variables is an equivalence transformation thanks to totality of features. In other words, ip 1 
and ip\ are equivalent. Let 1 = Var(ip[) and 2 = Var(ip2)- The formula <j> is of the form ip & e 
where ip consists only of sort and feature constraints and e consists only of equality constraints. 
These variable equalities generate the coreference relation. Let [X] denote the coreference class of X. 

If 71 is a sort-preserving bijection, then for every variable X of </>, 7{~ 1 ([X]) is the unique variable of 
ip[ which is element of this coreference class. Then, we can transform <j> into an equivalent formula 
4> by replacing every variable X by j^ 1 ([X]) in ip and replacing e by e' = f\ xeXl X = j v (X). Note 
that this is an equivalence preserving transformation since <f> is, by construction, of the form ip[ & e' 
and the coreference relation generated by e and s' are identical. It is important to realize that this 
statement would not be true if we had used ipi instead of ip[ . Indeed, then, ^ would have been of the 
form ip\ & ip' & e' where ip' consisted of additional feature constraints corresponding to occurrences 
of ip2 missing in ipi. 

Clearly, it is true that 1. (^'j 2- (^'i & e '))- This shows that 1. 

2 . (Root(ipi) = Root(ip 2 ) & i>[ & ^2)) and, thus, 1. (ip[ 2 . (Root(tpi) = 

Root(ip2) & tpi)) is valid, and thus ipi ip l- 

Conversely, if ipi tp 1, then also i- {tp[ i- {Root{ip\) = Root(ip2) & tpi)) is valid, and, 

thus, also 1. (^'j 2 - <P)- But this means that cj> does not contain equalities binding two 

variables of ^1 to each other, and that cj> does not contain a sort constraint stronger than the one in tpi 
on the (same or corresponding) variable of ^1 ■ I 

Note that the completion of tpi with occurrences from tp2 done in Step 1 is necessary to 
determine the bijection ji , and thus the mapping j v , with no loss of information. For example, 
if tpi = f(a,h) and ip2 = f{X,h(X)), then ip2 2 ^l- However, using tpi instead of the 
completed ip[ = f(a, h(U)) and normalizing does result in a sort-preserving bijection while, 
using it does not. 

6.3 Semantics of functional application 

If a function is defined over ^-terms, then this means that it can be applied to set-denoting 
objects to return set-denoting objects. We will first consider the meaning of pointwise 

22 By sort-preserving, we mean: VV £ Var{i>i), Sort^, l ( V) = Sort$(ji(V)). 
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functional application given an OSF-algebra A and a valuation a in A. This extends naturally 
to the meaning of functional application on sets, given just an OSF-algebra A. 

The function/ -4 '" maps elements to elements of the domain D A of A. In fact,/" 4 '" describes 
a partial, namely at most w-point function: 

!-l 

f A < a {d) = d'ifde lpil A ' a - \JlPjl A andd' 6 l ei J A ' a for some i. 

7=1 

The ^A-terms p\,...,p n are not necessarily disjoint. Instead of using an explicit negation 
operator, we give a deterministic meaning to the top-down order in the function definition in 
the above way. That is, we define the function/- 4 '" for only those valuations a where Hp,]" 4 '" 
is disjoint from [[pi]]" 4 , . . . , [F/? ; — 1 H*^ 1 - Implicitly, we make the ^-terms pi disjoint by giving 
them the denotations fipiJ A ' a - (Hpil -4 U . . . U lpi-\^ A ), for i = 1, . . . , n. Note that, for two 
■^-term i/ji and if^i, the set EV'iJ" 4 '" is disjoint with H^l" 4 '" — but generally not with 

[W^]]" 4 '" - IV'i]]" 4 '"- F° r example, take tp\ = X : int and if>2 = Y : real, and define some a 
where a(X) = 3, a(Y) = 4. 

The function/ -4 , i.e.,f interpreted in A, maps elements (and, by extension, sets) to subsets of 
the domain D A , 

f A {d) = {d' | 3a e Val{A).f A ' a {d) = d'}. 

The denotation of the functional application of / on the ^-term t under a valuation a in the 
interpretation A is: 

w(m A ' a = f A m A n- 

Thus, A, a |= Y : f(X : t) if and only if a(X) 6 M A ' a and a(Y) = f A '^(a(X)) for some 
0 G Val{A). 

The denotation of the functional application off on the ^A-term t in the interpretation A is 

mm A = f A m A ). 

Example 6.1 We define the identity function id on ^-terms by the rule: id(X : T) — > X : T. 
Then, id A (D) = D for any subset D C D A . If we confuse singletons and their elements, 
we may write id A {d) = d for elements d of the domain of A. If s is any sort, then lid(X : 
S )1 A = IX : sJ A = s A . In fact, the denotation of the function id applied on any ^-term is 
equal to the denotation of the ^-term. The denotation under a given valuation a is the value 
of the element on which the function is applied, fid{X : T)]]" 4 '" = IX : T]]" 4 '" = {a(X)}. 

Example 6.2 We define the function any by the rule: any(X : T) — > Y : T. The 
application of this function on a ^-term i\> yields always the sort T, any{ip) = Y : T = T. 
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Note that lanyl A < a (a(X)) = a(Y). Thus, any A (D) = D A for any subset D C D" 4 , and 
Iany(X : s)] A ' a = D A . 



Example 6.3 For a fixed sort s, we define the function sort s by the rule: sort s {X : s) — > X : 
T. Now, sortf(lX : T]]- 4 '") yields {a(X)} if a(X) G J" 4 and 0 otherwise. This function 
"type-checks" the variable X. Operationally, this means that the function call sort s (X) will 
residuate until X is known to be in the sort s and then fire; or, until it is known to be out of 
the sort s and fails. 



What about the interpretation of the syntactic object / in an OSF-algebra Al The function 
/ is generally not completely specified in that not one function is singled out in every 
interpretation A. Indeed, LIFE calculates with approximations of functions, just as it does 
for values of the universe. Thus, / denotes, under each interpretation A, the set of all partial 
functions p : D A i-> D A such that, if tp(d) = d', then there exists an A-valuation a such that 
f A ' a {d) = d'. 

7 Conclusion 

The original motivation of this paper was to provide a formal account of the precise manner 
in which functional application is used in the resolution scheme of LIFE. This involved doing 
three things essentially. Firstly, we have developed a correct and complete operational scheme 
for testing entailment and disentailment of order-sorted feature constraints. To that end, we 
have introduced a general technique, that we dubbed relative simplification, that amounts 
to normalization of a formula in the context of another. Secondly, we have developed a 
general residuation framework for guarded Horn-clauses over arbitrary constraint systems 
with an incremental relative simplification system. Doing so, we have given a logical reading 
of guarded rules as first-order formulae and exhibited operational and semantical properties 
of the framework. Lastly, we used this general residuation framework on the particular 
instance of functional application over the order-sorted features terms of LIFE. In particular, 
we characterized functional application over LIFE'S structures in terms of their logical, 
set-theoretic, and algebraic accounts. 

As for perspectives, one important issue begs the question. Namely, it would be interesting to 
build function denotations into the OSF-models. Indeed, while the framework of this paper 
gives a natural meaning to function symbols, it does not consider the latter as a "first-class" 
objects — i.e., the OSF-interpretations used here are not functionally complete. We plan to 
study a means of construction using well-known techniques a la Dana Scott to extend domains 
of OSF-algebras to be functionally complete. That should involve the machinery of classical 
Scott-style constructions. Another dimension to that endeavor would be that of seeing all 
functions as features of objects. This intriguing perspective could indeed lead to interesting 
model constructions. 
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Another avenue for further work on the foundations that we have just cast is the use of the 
new discipline for procedure parameter-passing in concurrent systems described as "call-by- 
constraint-entailment." This is along the lines of what has been proposed in [20] and [23], and 
realized to some extent in AKL [15]. The novelty that our scheme suggests is the possibility 
to derive automatically an effective means to realize this from the operational semantics of 
a given constraint-solver. Then, it should be practically possible for concurrent constraint 
programming languages to use any constraint system to control suspension and resumption of 
execution. 
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